Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
almalinuxAlmaLinuxALSA-2023:3840
HistoryJun 27, 2023 - 12:00 a.m.

Moderate: sqlite security update

2023-06-2700:00:00
errata.almalinux.org
13
sqlite
security update
crash
window functions
cvss score
unix
c library

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON

SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.

Security Fix(es):

  • sqlite: Crash due to misuse of window functions. (CVE-2020-24736)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
almalinux8i686sqlite-libs< 3.26.0-18.el8_8sqlite-libs-3.26.0-18.el8_8.i686.rpm
almalinux8i686sqlite-devel< 3.26.0-18.el8_8sqlite-devel-3.26.0-18.el8_8.i686.rpm
almalinux8noarchsqlite-doc< 3.26.0-18.el8_8sqlite-doc-3.26.0-18.el8_8.noarch.rpm
almalinux8i686sqlite< 3.26.0-18.el8_8sqlite-3.26.0-18.el8_8.i686.rpm
almalinux8x86_64sqlite< 3.26.0-18.el8_8sqlite-3.26.0-18.el8_8.x86_64.rpm
almalinux8x86_64sqlite-devel< 3.26.0-18.el8_8sqlite-devel-3.26.0-18.el8_8.x86_64.rpm
almalinux8x86_64sqlite-libs< 3.26.0-18.el8_8sqlite-libs-3.26.0-18.el8_8.x86_64.rpm
almalinux8aarch64sqlite< 3.26.0-18.el8_8sqlite-3.26.0-18.el8_8.aarch64.rpm
almalinux8aarch64sqlite-libs< 3.26.0-18.el8_8sqlite-libs-3.26.0-18.el8_8.aarch64.rpm
almalinux8aarch64sqlite-devel< 3.26.0-18.el8_8sqlite-devel-3.26.0-18.el8_8.aarch64.rpm
Rows per page:
1-10 of 201

Related

osv 2
redhatcve 1
debiancve 1
ibm 7
nessus 9
rocky 1
cve 1
prion 1
cvelist 1
nvd 1
oraclelinux 1
ubuntucve 1
redhat 43
osv
osv
Moderate: sqlite security update
2023-08-31 16:54:20
Moderate: sqlite security update
2023-06-27 00:00:00
redhatcve
redhatcve
CVE-2020-24736
2023-04-13 06:30:43
debiancve
debiancve
CVE-2020-24736
2023-04-11 18:15:58
ibm
ibm
Security Bulletin: IBM App Connect Enterprise Certified Container operands are vulnerable to denial of service due to [CVE-2020-24736]
2023-07-27 15:42:32
Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from openssl-libs, libssh, libarchive, sqlite and go-toolset
2023-08-01 06:33:11
Security Bulletin: Multiple security vulnerabilities affect IBM Robotic Process Automation for Cloud Pak.
2023-11-22 20:52:10
nessus
nessus
AlmaLinux 8 : sqlite (ALSA-2023:3840)
2023-06-29 00:00:00
RHEL 8 : sqlite (RHSA-2023:3840)
2023-06-27 00:00:00
Oracle Linux 8 : sqlite (ELSA-2023-3840)
2023-06-30 00:00:00
rocky
rocky
sqlite security update
2023-08-31 16:54:20
cve
cve
CVE-2020-24736
2023-04-11 18:15:58
prion
prion
Buffer overflow
2023-04-11 18:15:00
cvelist
cvelist
CVE-2020-24736
2023-04-11 00:00:00
nvd
nvd
CVE-2020-24736
2023-04-11 18:15:58
oraclelinux
oraclelinux
sqlite security update
2023-06-30 00:00:00
ubuntucve
ubuntucve
CVE-2020-24736
2023-04-11 00:00:00
redhat
redhat
(RHSA-2023:3840) Moderate: sqlite security update
2023-06-27 13:36:00
(RHSA-2024:0425) Moderate: sqlite security update
2024-01-24 14:40:30
(RHSA-2023:4276) Moderate: DevWorkspace Operator Security Update
2023-07-25 18:29:37

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for ALSA-2023:3840
osv2redhatcve1debiancve1ibm7nessus9rocky1cve1prion1cvelist1nvd1oraclelinux1ubuntucve1redhat43