Описание
In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c, which may lead to an information leak. This is related to ext/fts5/fts5_hash.c.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 3.22.0-1ubuntu0.1 |
| cosmic | released | 3.24.0-1ubuntu0.1 |
| devel | not-affected | 3.27.2-2 |
| disco | not-affected | 3.27.2-2 |
| esm-infra-legacy/trusty | not-affected | code not present |
| esm-infra/bionic | released | 3.22.0-1ubuntu0.1 |
| esm-infra/xenial | released | 3.11.0-1ubuntu1.2 |
| precise/esm | not-affected | code not present |
| trusty | ignored | end of standard support |
| trusty/esm | not-affected | code not present |
Показывать по
Ссылки на источники
EPSS
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c, which may lead to an information leak. This is related to ext/fts5/fts5_hash.c.
In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c, which may lead to an information leak. This is related to ext/fts5/fts5_hash.c.
In SQLite 3.27.2, running fts5 prefix queries inside a transaction cou ...
In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c, which may lead to an information leak. This is related to ext/fts5/fts5_hash.c.
Уязвимость функции fts5HashEntrySort в sqlite3.c системы управления базами данных SQLite, позволяющая нарушителю раскрыть защищаемую информацию
EPSS
5 Medium
CVSS2
7.5 High
CVSS3