CVE-2019-19959 - ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT INTO in situations involving e

CVE-2019-19959

Summary

ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT INTO in situations involving embedded '\0' characters in filenames, leading to a memory-management error that can be detected by (for example) valgrind.

References

Vulnerable Configurations

cpe:2.3:a:sqlite:sqlite:3.30.1:*:*:*:*:*:*:*
cpe:2.3:a:sqlite:sqlite:3.30.1:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 09-11-2020 - 21:47)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	PARTIAL	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:P/A:N

redhat via4

rpms

lemon-0:3.26.0-6.el8
lemon-debuginfo-0:3.26.0-6.el8
sqlite-0:3.26.0-6.el8
sqlite-analyzer-debuginfo-0:3.26.0-6.el8
sqlite-debuginfo-0:3.26.0-6.el8
sqlite-debugsource-0:3.26.0-6.el8
sqlite-devel-0:3.26.0-6.el8
sqlite-doc-0:3.26.0-6.el8
sqlite-libs-0:3.26.0-6.el8
sqlite-libs-debuginfo-0:3.26.0-6.el8
sqlite-tcl-debuginfo-0:3.26.0-6.el8

refmap via4

confirm	https://security.netapp.com/advisory/ntap-20200204-0001/
misc	https://github.com/sqlite/sqlite/commit/1e490c4ca6b43a9cf8637d695907888349f69bec https://github.com/sqlite/sqlite/commit/d8f2d46cbc9925e034a68aaaf60aad788d9373c1 https://www.oracle.com/security-alerts/cpuapr2020.html
ubuntu	USN-4298-1

Last major update

09-11-2020 - 21:47

Published

03-01-2020 - 22:15

Last modified

09-11-2020 - 21:47