[Git][security-tracker-team/security-tracker][master] Add CVE-2020-11656/sqlite3
Salvatore Bonaccorso
carnil at debian.org
Mon Apr 13 13:11:23 BST 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
450bdc33 by Salvatore Bonaccorso at 2020-04-13T14:10:17+02:00
Add CVE-2020-11656/sqlite3
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -164,7 +164,11 @@ CVE-2020-11658
CVE-2020-11657
RESERVED
CVE-2020-11656 (In SQLite through 3.31.1, the ALTER TABLE implementation has a use-aft ...)
- TODO: check
+ - sqlite3 <unfixed> (unimportant)
+ NOTE: https://www.sqlite.org/cgi/src/tktview?name=4722bdab08cb14
+ NOTE: https://www.sqlite.org/src/info/d09f8c3621d5f7f8
+ NOTE: https://www.sqlite.org/src/info/b64674919f673602
+ NOTE: Negliglible security impact (and uncovered in DEBUG build)
CVE-2020-11655 (SQLite through 3.31.1 allows attackers to cause a denial of service (s ...)
- sqlite3 3.31.1-5
[buster] - sqlite3 <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/450bdc339edeb7c38add2fbcdfdb3471d14eec44
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/450bdc339edeb7c38add2fbcdfdb3471d14eec44
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200413/dd78b959/attachment.html>
More information about the debian-security-tracker-commits
mailing list