Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-202003-16
HistoryMar 15, 2020 - 12:00 a.m.

SQLite: Multiple vulnerabilities

2020-03-1500:00:00
Gentoo Foundation
security.gentoo.org
123

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.01 Low

EPSS

Percentile

84.0%

JSON

Background

SQLite is a C library that implements an SQL database engine.

Description

Multiple vulnerabilities have been discovered in SQLite. Please review the CVE identifiers referenced below for details.

Impact

A remote attacker could possibly execute arbitrary code with the privileges of the process, or cause a Denial of Service condition.

Workaround

There is no known workaround at this time.

Resolution

All SQLite users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=dev-db/sqlite-3.31.1"
OSVersionArchitecturePackageVersionFilename
Gentooanyalldev-db/sqlite< 3.31.1UNKNOWN

Related

nessus 59
sqlite 1
nvd 3
veracode 3
ubuntucve 3
cvelist 3
suse 6
openvas 36
prion 3
osv 6
ibm 8
symantec 1
cbl_mariner 1
alpinelinux 1
cve 3
debiancve 3
fedora 7
redhatcve 3
photon 11
cloudfoundry 2
ubuntu 2
redhat 19
kaspersky 2
almalinux 3
oraclelinux 2
f5 1
chrome 1
rocky 2
debian 1
mageia 2
amazon 1
nessus
nessus
GLSA-202003-16 : SQLite: Multiple vulnerabilities
2020-03-16 00:00:00
SUSE SLED15 / SLES15 Security Update : sqlite3 (SUSE-SU-2019:2533-1)
2019-10-04 00:00:00
Photon OS 3.0: Sqlite PHSA-2020-3.0-0083
2020-04-29 00:00:00
sqlite
sqlite
SQLite report about CVE-2020-9327
2020-01-01 00:00:00
nvd
nvd
CVE-2020-9327
2020-02-21 22:15:10
CVE-2019-16168
2019-09-09 17:15:13
CVE-2019-5827
2019-06-27 17:15:14
veracode
veracode
Denial Of Service(DoS)
2020-11-05 03:10:13
Denial Of Service (DoS)
2019-09-10 03:36:37
Integer Overflow
2020-09-21 06:25:03
ubuntucve
ubuntucve
CVE-2019-16168
2019-09-09 00:00:00
CVE-2020-9327
2020-02-21 00:00:00
CVE-2019-5827
2019-06-27 00:00:00
cvelist
cvelist
CVE-2019-16168
2019-09-09 16:07:15
CVE-2020-9327
2020-02-21 21:25:14
CVE-2019-5827
2019-06-27 16:13:44
suse
suse
Security update for sqlite3 (moderate)
2019-10-08 00:00:00
Security update for sqlite3 (moderate)
2019-10-08 00:00:00
Security update for chromium (important)
2019-05-28 00:00:00
openvas
openvas
SQLite 3.8.5 - 3.29.0 DoS Vulnerability
2021-06-17 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:2533-1)
2021-06-09 00:00:00
Huawei EulerOS: Security Advisory for sqlite (EulerOS-SA-2019-2119)
2020-01-23 00:00:00
prion
prion
Design/Logic Flaw
2019-09-09 17:15:00
Null pointer dereference
2020-02-21 22:15:00
Integer overflow
2019-06-27 17:15:00
osv
osv
CVE-2019-16168
2019-09-09 17:15:13
BIT-sqlite-2020-9327
2024-03-06 11:06:54
sqlite3 - security update
2020-08-22 00:00:00
ibm
ibm
Security Bulletin: A vulnerability was identified and remediated in the IBM MaaS360 Cloud Extender (CVE-2020-9327)
2021-01-13 16:26:32
Security Bulletin: A vulneraqbility in SQLite affects IBM Cloud Application Performance Managment R esponse Time Monitoring Agent (CVE-2019-16168)
2020-01-21 02:51:45
Security Bulletin: A vulneraqbility in SQLite affects IBM Cloud Application Performance Managment Response Time Monitoring Agent (CVE-2019-16168)
2020-02-04 06:52:30
symantec
symantec
SQLite CVE-2019-16168 Denial of Service Vulnerability
2019-11-05 00:00:00
cbl_mariner
cbl_mariner
CVE-2019-16168 affecting package ceph for versions less than 18.2.1-1
2024-04-17 22:02:46
alpinelinux
alpinelinux
CVE-2019-16168
2019-09-09 17:15:13
cve
cve
CVE-2019-16168
2019-09-09 17:15:13
CVE-2020-9327
2020-02-21 22:15:10
CVE-2019-5827
2019-06-27 17:15:14
debiancve
debiancve
CVE-2020-9327
2020-02-21 22:15:10
CVE-2019-16168
2019-09-09 17:15:13
CVE-2019-5827
2019-06-27 17:15:14
fedora
fedora
[SECURITY] Fedora 30 Update: sqlite-3.26.0-7.fc30
2019-12-05 01:12:09
[SECURITY] Fedora 30 Update: sqlite-3.26.0-5.fc30
2019-05-20 01:05:52
[SECURITY] Fedora 29 Update: sqlite-3.26.0-3.fc29
2019-06-04 02:22:26
redhatcve
redhatcve
CVE-2019-5827
2019-05-06 12:51:03
CVE-2020-9327
2020-03-02 20:40:51
CVE-2019-16168
2019-11-05 17:56:14
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0234
2020-04-22 00:00:00
Important Photon OS Security Update - PHSA-2020-0234
2020-04-22 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-2.0-0184
2019-10-23 00:00:00
cloudfoundry
cloudfoundry
USN-4205-1: SQLite vulnerabilities | Cloud Foundry
2019-12-18 00:00:00
USN-4298-1: SQLite vulnerabilities | Cloud Foundry
2020-03-31 00:00:00
ubuntu
ubuntu
SQLite vulnerabilities
2019-12-02 00:00:00
SQLite vulnerabilities
2020-03-10 00:00:00
redhat
redhat
(RHSA-2019:1243) Important: chromium-browser security update
2019-05-16 20:01:47
(RHSA-2020:4442) Moderate: sqlite security update
2020-11-03 12:04:56
(RHSA-2021:1968) Moderate: mingw packages security and bug fix update
2021-05-18 06:30:39
kaspersky
kaspersky
KLA11475 Multiple vulnerabilities in Google Chrome
2019-04-30 00:00:00
KLA11646 Multiple vulnerabilities in Oracle JRE
2020-01-05 00:00:00
almalinux
almalinux
Moderate: sqlite security update
2020-11-03 12:04:56
Moderate: mingw packages security and bug fix update
2021-05-18 06:30:39
Moderate: sqlite security update
2021-11-09 09:16:47
oraclelinux
oraclelinux
sqlite security update
2020-11-10 00:00:00
sqlite security update
2021-11-16 00:00:00
f5
f5
K96300145 : C Library (SQLite & libxslt) vulnerabilities CVE-2019-16168 CVE-2019-13117 CVE-2019-13118
2020-01-31 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2019-04-30 00:00:00
rocky
rocky
mingw packages security and bug fix update
2021-05-18 00:00:00
sqlite security update
2021-11-09 09:16:47
debian
debian
[SECURITY] [DLA 2340-1] sqlite3 security update
2020-08-22 22:34:41
mageia
mageia
Updated sqlite3 packages fix security vulnerabilities
2020-01-30 21:28:34
Updated sqlite3 packages fix security vulnerabilities
2021-07-01 02:58:41
amazon
amazon
Important: java-11-amazon-corretto
2020-01-14 23:07:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.01 Low

EPSS

Percentile

84.0%

JSON
Related for GLSA-202003-16
nessus59sqlite1nvd3veracode3ubuntucve3cvelist3suse6openvas36prion3osv6ibm8symantec1cbl_mariner1alpinelinux1cve3debiancve3fedora7redhatcve3photon11cloudfoundry2ubuntu2redhat19kaspersky2almalinux3oraclelinux2f51chrome1rocky2debian1mageia2amazon1