Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 711194 - <dev-db/sqlite-3.30: Crash (DoS) due to validation error (CVE-2019-16168)
Summary: <dev-db/sqlite-3.30: Crash (DoS) due to validation error (CVE-2019-16168)
Status: RESOLVED DUPLICATE of bug 697678
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL:
Whiteboard: A3 [cleanup]
Keywords:
Depends on:
Blocks:
 
Reported: 2020-03-01 17:52 UTC by Sam James
Modified: 2020-03-02 22:34 UTC (History)
3 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Sam James archtester gentoo-dev Security 2020-03-01 17:52:32 UTC
Description:
"In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner."
Comment 1 Thomas Deutschmann gentoo-dev Security 2020-03-02 22:34:43 UTC

*** This bug has been marked as a duplicate of bug 697678 ***