[Git][security-tracker-team/security-tracker][master] CVE-2020-13434 (sqlite) does not affect buster.
Tobias Frost (@tobi)
tobi at debian.org
Sat May 13 09:45:29 BST 2023
Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9bac5d7f by Tobias Frost at 2023-05-13T10:45:09+02:00
CVE-2020-13434 (sqlite) does not affect buster.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -226219,10 +226219,10 @@ CVE-2020-13434 (SQLite through 3.32.0 has an integer overflow in sqlite3_str_vap
- sqlite3 3.32.1-1
[buster] - sqlite3 3.27.2-3+deb10u1
- sqlite <removed>
+ [buster] - sqlite <not-affected> (Vulnerable code introduced later)
NOTE: https://www.sqlite.org/src/info/23439ea582241138
NOTE: https://www.sqlite.org/src/info/d08d3405878d394e
NOTE: https://github.com/sqlite/sqlite/commit/dd6c33d372f3b83f4fe57904c2bd5ebba5c38018
- NOTE: Vulnerable code in printf:vxprinf() for sqlite(v2)
CVE-2020-13433 (Jason2605 AdminPanel 4.0 allows SQL Injection via the editPlayer.php h ...)
NOT-FOR-US: Jason2605 AdminPanel
CVE-2020-13432 (rejetto HFS (aka HTTP File Server) v2.3m Build #300, when virtual file ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9bac5d7f168f5ca37e98ff03d7242897f68a9f6a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9bac5d7f168f5ca37e98ff03d7242897f68a9f6a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230513/06d138c7/attachment.htm>
More information about the debian-security-tracker-commits
mailing list