VDB

DEBIAN-CVE-2019-19880

DEBIAN-CVE-2019-19880 PUBLISHED CVSS 7.5 HIGH

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled.

Risk Scores

CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Debian:14chromium0, 0, 0
Debian:12sqlite30, 0, 0
Debian:12chromium0, 0, 0
Debian:14sqlite30, 0, 0
Debian:11chromium0, 0, 0
Debian:13chromium0, 0, 0
Debian:13sqlite30, 0, 0
Debian:11sqlite30, 0, 0

Timeline

  • Dec 18, 2019 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›