Описание
ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT INTO in situations involving embedded '\0' characters in filenames, leading to a memory-management error that can be detected by (for example) valgrind.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 3.22.0-1ubuntu0.3 |
| devel | not-affected | 3.31.1-1ubuntu1 |
| disco | ignored | end of life |
| eoan | released | 3.29.0-2ubuntu0.2 |
| esm-infra-legacy/trusty | not-affected | code not present |
| esm-infra/bionic | released | 3.22.0-1ubuntu0.3 |
| esm-infra/xenial | not-affected | code not present |
| precise/esm | not-affected | code not present |
| trusty | ignored | end of standard support |
| trusty/esm | not-affected | code not present |
Показывать по
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT INTO in situations involving embedded '\0' characters in filenames, leading to a memory-management error that can be detected by (for example) valgrind.
ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT INTO in situations involving embedded '\0' characters in filenames, leading to a memory-management error that can be detected by (for example) valgrind.
ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT ...
ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT INTO in situations involving embedded '\0' characters in filenames, leading to a memory-management error that can be detected by (for example) valgrind.
Уязвимость функции zipfile() системы управления базами данных SQLite, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код
5 Medium
CVSS2
7.5 High
CVSS3