rpm package
suse/sqlite3&distro=SUSE Linux Enterprise Server 15 SP2-BCL
pkg:rpm/suse/sqlite3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCL
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-35737 | Hig | 7.5 | < 3.39.3-150000.3.17.1 | 3.39.3-150000.3.17.1 | Aug 3, 2022 | SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API. | |
| CVE-2021-36690 | Hig | 7.5 | < 3.39.3-150000.3.17.1 | 3.39.3-150000.3.17.1 | Aug 24, 2021 | A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL query. NOTE: the vendor disputes the relevance of this report because a sqlite3.exe user already has full privileges (e.g., is in |
- affected < 3.39.3-150000.3.17.1fixed 3.39.3-150000.3.17.1
SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API.
- affected < 3.39.3-150000.3.17.1fixed 3.39.3-150000.3.17.1
A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL query. NOTE: the vendor disputes the relevance of this report because a sqlite3.exe user already has full privileges (e.g., is in