[cve-request () mitre org: Re: [scr479280] sqlite3 - all; fix is in source control but not yet released]

[Seth Arnold <seth.arnold () canonical com>]

Hello, our friends at MITRE have assigned CVE-2018-8740 to an issue in
SQLite3 that was discovered by OSS-Fuzz working on GDAL.

Thanks to Even Rouault for passing along the issue and D. Richard Hipp
for the fix.

----- Forwarded message from cve-request () mitre org -----

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

> [Suggested description]
> In SQLite
> through 3.22.0,
> databases whose schema is corrupted using a CREATE TABLE AS statement could cause a NULL pointer dereference,
> related to build.c and prepare.c.
>
> ------------------------------------------
>
> [VulnerabilityType Other]
> NULL pointer dereference
>
> ------------------------------------------
>
> [Vendor of Product]
> SQLite
>
> ------------------------------------------
>
> [Affected Product Code Base]
> sqlite3 - all; fix is in source control but not yet released
>
> ------------------------------------------
>
> [Affected Component]
> src/build.c, src/prepare.c
>
> ------------------------------------------
>
> [Attack Type]
> Context-dependent
>
> ------------------------------------------
>
> [Impact Denial of Service]
> true
>
> ------------------------------------------
>
> [Attack Vectors]
> A corrupted SQLite3 database file must be accessed.
>
> ------------------------------------------
>
> [Reference]
> https://bugs.launchpad.net/ubuntu/+source/sqlite3/+bug/1756349
> https://www.sqlite.org/cgi/src/timeline?r=corrupt-schema
> https://www.sqlite.org/cgi/src/vdiff?from=1774f1c3baf0bc3d&to=d75e67654aa9620b
> https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=6964
>
> ------------------------------------------
>
> [Has vendor confirmed or acknowledged the vulnerability?]
> true
>
> ------------------------------------------
>
> [Discoverer]
> OSS-Fuzz

Use CVE-2018-8740.


- -- 
CVE Assignment Team
M/S M300, 202 Burlington Road, Bedford, MA 01730 USA
[ A PGP key is available for encrypted communications at
  http://cve.mitre.org/cve/request_id.html ]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=gkoK
-----END PGP SIGNATURE-----


----- End forwarded message -----

Attachment: signature.asc
Description: