[ubuntu/trusty-security] sqlite3 3.8.2-1ubuntu2.1 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Thu Jul 30 16:39:12 UTC 2015
sqlite3 (3.8.2-1ubuntu2.1) trusty-security; urgency=medium
* SECURITY UPDATE: array overrun in the skip-scan optimization
(LP: #1448758)
- debian/patches/CVE-2013-7443.patch: make sure array is large enough
in src/where.c, added test to test/skipscan1.test.
- CVE-2013-7443
* SECURITY UPDATE: improper dequoting of collation-sequence names
- debian/patches/CVE-2015-3414.patch: handle dequoting in src/expr.c,
src/parse.y, src/sqliteInt.h, src/where.c, added tests to
test/collate1.test.
- CVE-2015-3414
* SECURITY UPDATE: improper large integers handling in printf function
- debian/patches/CVE-2015-3416.patch: handle large integers in
src/printf.c, added tests to test/printf.test.
- CVE-2015-3416
Date: 2015-07-15 17:46:12.058164+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/sqlite3/3.8.2-1ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Trusty-changes
mailing list