[Git][security-tracker-team/security-tracker][master] CVE-2021-31239/sqlite3 does not affect buster or bullseye
Adrian Bunk (@bunk)
bunk at debian.org
Mon Sep 30 10:13:48 BST 2024
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker
Commits:
abd0494f by Adrian Bunk at 2024-09-30T12:13:02+03:00
CVE-2021-31239/sqlite3 does not affect buster or bullseye
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -261865,12 +261865,12 @@ CVE-2021-31240 (An issue found in libming v.0.4.8 allows a local attacker to exe
NOTE: https://github.com/libming/libming/issues/218
CVE-2021-31239 (An issue found in SQLite SQLite3 v.3.35.4 that allows a remote attacke ...)
- sqlite3 3.36.0-2
- [bullseye] - sqlite3 <no-dsa> (Minor issue)
- [buster] - sqlite3 <no-dsa> (Minor issue)
+ [bullseye] - sqlite3 <not-affected> (Vulnerable code not present)
+ [buster] - sqlite3 <not-affected> (Vulnerable code not present)
- sqlite <not-affected> (Vulnerable code not present)
NOTE: https://www.sqlite.org/forum/forumpost/d9fce1a89b
NOTE: Fixed by: https://github.com/sqlite/sqlite/commit/6536c4f18e3dd37084c902f965631ff28248d8c7 (version-3.36.0)
- NOTE: Vulnerable feature introduced with: https://github.com/sqlite/sqlite/commit/3be8b1a4f7848c1d67324893f4ac9cace8c06eb0 (version-3.22.0, https://sqlite.org/releaselog/3_22_0.html)
+ NOTE: Introduced by: https://sqlite.org/src/info/25c3186aa143328157fb506a29802e87099cd14be4fa218230484a3212f20621 (3.35.2)
CVE-2021-31238
RESERVED
CVE-2021-31237
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abd0494feec7bf52a2fd4166821f693257c4d713
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abd0494feec7bf52a2fd4166821f693257c4d713
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240930/efa0d44c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list