[Secure-testing-commits] r56751 - data/CVE
Chris Lamb
lamby at moszumanska.debian.org
Mon Oct 16 12:56:57 UTC 2017
Author: lamby
Date: 2017-10-16 12:56:56 +0000 (Mon, 16 Oct 2017)
New Revision: 56751
Modified:
data/CVE/list
Log:
sqlite3 not affected-by CVE-2017-15286; tableColumnList does not exist
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-16 12:52:26 UTC (rev 56750)
+++ data/CVE/list 2017-10-16 12:56:56 UTC (rev 56751)
@@ -229,6 +229,7 @@
NOT-FOR-US: BouquetEditor WebPlugin
CVE-2017-15286 (SQLite 3.20.1 has a NULL pointer dereference in tableColumnList in ...)
- sqlite3 <unfixed> (low; bug #878680)
+ [wheezy] - sqlite3 <not-affected> (Vulnerable code not present)
NOTE: https://github.com/Ha0Team/crash-of-sqlite3/blob/master/poc.md
NOTE: https://www.sqlite.org/src/info/5d0ceb8dcdef92cd
CVE-2017-15285 (X-Cart 5.2.23, 5.3.1.9, 5.3.2.13, and 5.3.3 is vulnerable to Remote ...)
More information about the Secure-testing-commits
mailing list