oss-sec mailing list archives
[cve-request () mitre org: Re: [scr479280] sqlite3 - all; fix is in source control but not yet released]
From: Seth Arnold <seth.arnold () canonical com>
Date: Fri, 16 Mar 2018 17:41:50 -0700
Hello, our friends at MITRE have assigned CVE-2018-8740 to an issue in SQLite3 that was discovered by OSS-Fuzz working on GDAL. Thanks to Even Rouault for passing along the issue and D. Richard Hipp for the fix. ----- Forwarded message from cve-request () mitre org ----- -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
[Suggested description] In SQLite through 3.22.0, databases whose schema is corrupted using a CREATE TABLE AS statement could cause a NULL pointer dereference, related to build.c and prepare.c. ------------------------------------------ [VulnerabilityType Other] NULL pointer dereference ------------------------------------------ [Vendor of Product] SQLite ------------------------------------------ [Affected Product Code Base] sqlite3 - all; fix is in source control but not yet released ------------------------------------------ [Affected Component] src/build.c, src/prepare.c ------------------------------------------ [Attack Type] Context-dependent ------------------------------------------ [Impact Denial of Service] true ------------------------------------------ [Attack Vectors] A corrupted SQLite3 database file must be accessed. ------------------------------------------ [Reference] https://bugs.launchpad.net/ubuntu/+source/sqlite3/+bug/1756349 https://www.sqlite.org/cgi/src/timeline?r=corrupt-schema https://www.sqlite.org/cgi/src/vdiff?from=1774f1c3baf0bc3d&to=d75e67654aa9620b https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=6964 ------------------------------------------ [Has vendor confirmed or acknowledged the vulnerability?] true ------------------------------------------ [Discoverer] OSS-Fuzz
Use CVE-2018-8740. - -- CVE Assignment Team M/S M300, 202 Burlington Road, Bedford, MA 01730 USA [ A PGP key is available for encrypted communications at http://cve.mitre.org/cve/request_id.html ] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJarFm6AAoJEHb/MwWLVhi2C3oP/1rVX4scV1Ilox/LgOCjPDE1 Oxq3swzeowK8rEDbBMhyuYKrz3dY8Rir/wzgQ2PXiRItw0fNY4dxFf/ZwSR16l5k 0YzYc9FsnljK+6OJ9ZrH/4VmgbXAZOf+wANeISqndgfaBFPqv/WYb5aprr6GTVkM k73m3r+Wzp+yHg4mth+Y9eAqGOOi8s+W3yR5hTscLAxRaBcMq2rH0MNJKL6AUIxx gkTrqYh2tQqfaZFtm+Gfv3j3coKj/gpzK+fFAyqDjjrEFajhb3NKoiMu8+nvjsQx yOt02P2cqn/qb3jdu4dGDu4oaRvMazP6bvHaDyfSd3zfYb0RBuRzEfa5ZAWmHFcw 7RUq1ryvX+zUdK4cpfywC2/9XUfPoM37cWhV2+myd9lgbiCwdbF094omdEiHI4HB hnPfBzk1ZlizgNKaV8iK+RNdLDKLwv2MjyJ1X7SEe0xmengetfFvOEa7qWRFNog8 5aQOG0r2oLg4/ZirOlUkIwLa2OFlG0VnhDww9TMtdEiz95slmmXgv6cVGHdTEteo WginOrUnMBjkm+jUDKilBABw49UxFpzKAqa+z0zTsheaKAm1Ydu2j8I2K5bLLhAc MX4MHG3y8M/5nn7HXvhIIOP2Gcxc14WPJhug3rgq0VVdS+O4NFSXG1Umjc+boHCv RF7PZ9dM9WOVd4QFf3RI =gkoK -----END PGP SIGNATURE----- ----- End forwarded message -----
Attachment:
signature.asc
Description:
Current thread:
- [cve-request () mitre org: Re: [scr479280] sqlite3 - all; fix is in source control but not yet released] Seth Arnold (Mar 16)