Your submission was sent successfully! Close

CVE-2019-19924

Published: 24 December 2019

SQLite 3.30.1 mishandles certain parser-tree rewriting, related to expr.c, vdbeaux.c, and window.c. This is caused by incorrect sqlite3WindowRewrite() error handling.

Priority

Medium

CVSS 3 base score: 5.3

Status

Package Release Status
sqlite3
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(code not present)
disco Ignored
(reached end-of-life)
eoan
Released (3.29.0-2ubuntu0.2)
precise Not vulnerable
(code not present)
trusty Not vulnerable
(code not present)
upstream
Released (3.30.1+fossil191229-1)
xenial Not vulnerable
(code not present)
Patches:
upstream: https://github.com/sqlite/sqlite/commit/8654186b0236d556aa85528c2573ee0b6ab71be3