漏洞信息详情

SQLite 缓冲区错误漏洞

  • CNNVD编号:CNNVD-201903-847
  • 危害等级: 高危
  • CVE编号: CVE-2019-9936
  • 漏洞类型: 缓冲区错误
  • 发布时间: 2019-03-22
  • 威胁类型: 远程
  • 更新时间: 2019-06-21
  • 厂        商:
  • 漏洞来源: Ubuntu,Chu

漏洞简介

SQLite是美国D.Richard Hipp软件开发者的一套基于C语言的开源嵌入式关系数据库管理系统。该系统具有独立性、隔离性、跨平台等特点。

SQLite 3.27.2版本中存在安全漏洞。目前尚无此漏洞的相关信息,请随时关注CNNVD或厂商公告。

漏洞公告

目前厂商已发布升级补丁以修复漏洞,补丁获取链接:

https://sqlite.org/src/info/b3fa58dd7403dbd4

参考网址

来源:FEDORA

链接:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EXD2GYJVTDGEQPUNMMMC5TB7MQXOBBMO/

来源:BID

链接:https://www.securityfocus.com/bid/107562

来源:www.mail-archive.com

链接:https://www.mail-archive.com/sqlite-users@mailinglists.sqlite.org/msg114394.html

来源:www.mail-archive.com

链接:https://www.mail-archive.com/sqlite-users@mailinglists.sqlite.org/msg114382.html

来源:sqlite.org

链接:https://sqlite.org/src/info/b3fa58dd7403dbd4

来源:SUSE

链接:http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00026.html

来源:CONFIRM

链接:https://security.netapp.com/advisory/ntap-20190416-0005/

来源:FEDORA

链接:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N66U5PY5UJU4XBFZJH7QNKIDNAVIB4OP/

来源:BID

链接:http://www.securityfocus.com/bid/107562

来源:www.suse.com

链接:https://www.suse.com/support/update/announcement/2019/suse-su-20191127-1.html

来源:usn.ubuntu.com

链接:https://usn.ubuntu.com/4019-1/

来源:usn.ubuntu.com

链接:https://usn.ubuntu.com/4019-2/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/80142

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2019.2196/

来源:www.securityfocus.com

链接:http://www.securityfocus.com/bid/107562

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/153351/Ubuntu-Security-Notice-USN-4019-1.html

来源:nvd.nist.gov

链接:https://nvd.nist.gov/vuln/detail/CVE-2019-9936

来源:vigilance.fr

链接:https://vigilance.fr/vulnerability/SQLite-out-of-bounds-memory-reading-via-FTS5-Transaction-Prefix-Queries-28843

受影响实体

    暂无


漏洞信息快速查询

相关漏洞

更多