Integer Overflow or Wraparound
Affecting sqlite3 package, versions <3.22.0-1ubuntu0.1
Report new vulnerabilities
Do your applications use this vulnerable package?
Test your applications
Overview
SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries that occur after crafted changes to FTS3 shadow tables, allowing remote attackers to execute arbitrary code by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use cases), aka Magellan.
References
- Apple Security Advisory
- Apple Security Advisory
- Apple Security Advisory
- Apple Security Advisory
- Apple Security Advisory
- Apple Security Advisory
- CONFIRM
- CVE Details
- Chromium Issue
- Debian Security Announcement
- Debian Security Tracker
- FREEBSD
- Fedora Security Update
- Gentoo Security Advisory
- MISC
- MISC
- MISC
- MISC
- MISC
- MISC
- MISC
- MISC
- MISC
- MISC
- MISC
- MLIST
- N/A
- OpenSuse Security Announcement
- OpenSuse Security Announcement
- RedHat Bugzilla Bug
- RedHat Bugzilla Bug
- Security Focus
- Ubuntu CVE Tracker
- Ubuntu Security Advisory
- Ubuntu Security Advisory
CVSS Score
8.1
medium severity
-
Attack VectorNetwork
-
Attack ComplexityHigh
-
Privileges RequiredNone
-
User InteractionNone
-
ScopeUnchanged
-
ConfidentialityHigh
-
IntegrityHigh
-
AvailabilityHigh
- CVE
- CVE-2018-20346
- CWE
- CWE-190
- Snyk ID
- SNYK-UBUNTU1804-SQLITE3-449805
- Disclosed
- 21 Dec, 2018
- Published
- 21 Dec, 2018