[Secure-testing-commits] r56763 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Oct 16 19:38:32 UTC 2017
Author: carnil
Date: 2017-10-16 19:38:32 +0000 (Mon, 16 Oct 2017)
New Revision: 56763
Modified:
data/CVE/list
Log:
Update status for jessie and stretch for CVE-2017-15286/sqlite3
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-16 18:40:57 UTC (rev 56762)
+++ data/CVE/list 2017-10-16 19:38:32 UTC (rev 56763)
@@ -232,6 +232,8 @@
NOT-FOR-US: BouquetEditor WebPlugin
CVE-2017-15286 (SQLite 3.20.1 has a NULL pointer dereference in tableColumnList in ...)
- sqlite3 3.20.1-2 (low; bug #878680)
+ [stretch] - sqlite3 <not-affected> (Vulnerable code introduced later)
+ [jessie] - sqlite3 <not-affected> (Vulnerable code introduced later)
[wheezy] - sqlite3 <not-affected> (Vulnerable code not present)
NOTE: https://github.com/Ha0Team/crash-of-sqlite3/blob/master/poc.md
NOTE: https://www.sqlite.org/src/info/5d0ceb8dcdef92cd
More information about the Secure-testing-commits
mailing list