SQLite
View Ticket
Not logged in
Ticket UUID: a59ae93ee990a55021e617a50616607eb51af8c9
Title: Crashes due to fuzzed input
Status: Fixed Type: Code_Defect
Severity: Severe Priority: Immediate
Subsystem: Unknown Resolution: Fixed
Last Modified: 2015-01-09 01:27:34
Version Found In:
User Comments:
drh added on 2015-01-09 00:43:34:

Michal Zalewski found several crashing bugs by running a fuzzer against SQLite and reported them on the mailing list, moments ago. Each of the following four statements causes a crash:

SELECT n()AND+#00;
SELECT(SELECT strftime());
DETACH(SELECT group_concat(q));
CREATE TABLE t0(t); INSERT INTO t0 SELECT strftime();