CVE-2019-8457

Priority
Description
SQLite3 from 3.6.0 to and including 3.27.2 is vulnerable to heap
out-of-bound read in the rtreenode() function when handling invalid rtree
tables.
Assigned-to
leosilva
Notes
leosilvadb5.3 has a sqlite into /lang/sql/sqlite
Package
Upstream:needs-triage
Ubuntu 18.04 LTS:DNE
Ubuntu 20.04 LTS:DNE
Ubuntu 21.10:DNE
Ubuntu 22.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
Package
Source: db5.3 (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 18.04 LTS:released (5.3.28-13.1ubuntu1.1)
Ubuntu 20.04 LTS:released (5.3.28+dfsg1-0.6ubuntu1)
Ubuntu 21.10:released (5.3.28+dfsg1-0.6ubuntu1)
Ubuntu 16.04 ESM:released (5.3.28-11ubuntu0.2)
Ubuntu 22.04 LTS:released (5.3.28+dfsg1-0.6ubuntu1)
Ubuntu 14.04 ESM:released (5.3.28-3ubuntu3.1+esm1)
Patches:
Package
Upstream:needs-triage
Ubuntu 18.04 LTS:needs-triage
Ubuntu 20.04 LTS:needs-triage
Ubuntu 21.10:needs-triage
Ubuntu 22.04 LTS:needs-triage
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:needs-triage
Ubuntu 18.04 LTS:needed
Ubuntu 20.04 LTS:needed
Ubuntu 21.10:needed
Ubuntu 22.04 LTS:needed
Ubuntu 14.04 ESM:DNE
Patches:
Package
Upstream:needs-triage
Ubuntu 18.04 LTS:released (3.22.0-1ubuntu0.1)
Ubuntu 20.04 LTS:released (3.27.2-3)
Ubuntu 21.10:released (3.27.2-3)
Ubuntu 16.04 ESM:released (3.11.0-1ubuntu1.2)
Ubuntu 22.04 LTS:released (3.27.2-3)
Ubuntu 14.04 ESM:released (3.8.2-1ubuntu2.2+esm1)
Patches:
More Information

Updated: 2022-04-25 00:44:39 UTC (commit ecc1009cb19540b950de59270950018900f37f15)