Documentation Source Text

Check-in [7565236dfd]
Login

Many hyperlinks are disabled.
Use anonymous login to enable hyperlinks.

Overview
Comment:Update the CVE list.
Downloads: Tarball | ZIP archive
Timelines: family | ancestors | descendants | both | branch-3.32
Files: files | file ages | folders
SHA3-256: 7565236dfd0ee801fcb558f3755909777591a64acf8eb7541c232b2fb5519a4b
User & Date: drh 2020-06-29 01:26:35.346
Context
2020-07-03
09:57
Typos in the shared-cache mode documentation. (check-in: f79cc54f25 user: drh tags: branch-3.32)
2020-06-29
11:40
Merge fixes from the 3.32 branch. (check-in: e3d95c44b7 user: drh tags: trunk)
01:26
Update the CVE list. (check-in: 7565236dfd user: drh tags: branch-3.32)
2020-06-19
16:19
Fix typo. (check-in: 4bcbd4ac5e user: drh tags: branch-3.32)
Changes
Unified Diff Ignore Whitespace Patch
Changes to pages/cves.in.
258
259
260
261
262
263
264




265
266
267
268
269
270
271
<th valign="bottom">Fix</th>
<th valign="bottom">Comments</th>
</tr>
</thead>
<tbody>

<tcl>




CVE 2020-13871 3.32.3 {
  Malicious SQL statement causes a read-only use-after-free memory error.
} {https://sqlite.org/src/info/c8d3b9f0a750a529}

CVE 2020-13632 3.32.0 {
  Malicious SQL statement causes a read of a NULL pointer in the
  [matchinfo()] SQL function of the [FTS3] extension, resulting in







>
>
>
>







258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
<th valign="bottom">Fix</th>
<th valign="bottom">Comments</th>
</tr>
</thead>
<tbody>

<tcl>
CVE 2020-15358 3.32.3 {
  Malicious SQL statement causes an read past the end of a heap buffer.
} {https://sqlite.org/src/info/8f157e8010b22af0}

CVE 2020-13871 3.32.3 {
  Malicious SQL statement causes a read-only use-after-free memory error.
} {https://sqlite.org/src/info/c8d3b9f0a750a529}

CVE 2020-13632 3.32.0 {
  Malicious SQL statement causes a read of a NULL pointer in the
  [matchinfo()] SQL function of the [FTS3] extension, resulting in