VDB

GCVE-110-MAGEIA-2020-70

GCVE-110-MAGEIA-2020-70
Advisory Published
Vulnetix · Advisory published January 30, 2020
Updated sqlite3 packages fix security vulnerabilities: An out of bounds write flaw (CVE-2019-13734), insufficient data validation flaw (CVE-2019-13750), uninitialized use flaw (CVE-2019-13751), and out of bounds read flaws (CVE-2019-13752, CVE-2019-13753) in SQLite before 3.31.0. It was discovered that SQLite incorrectly handled certain schemas. An attacker could possibly use this issue to cause a denial of service (CVE-2019-16168). It was discovered that SQLite incorrectly handled certain schemas. An attacker could possibly use this issue to mishandles some expressions (CVE-2019-19242). It was discovered that SQLite incorrectly handled certain queries. An attacker could possibly use this issue to execute arbitrary code (CVE-2019-19244). exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled (CVE-2019-19880). For other changes in this update, see the referenced releaaselogs.

Affected Products

VendorProductVersionsPlatforms
Mageiasqlite30 (affected), 3.31.1-1.mga7 (unaffected), 0 (affected), 3.31.1-1.mga7 (unaffected)
Mageiadrakx-installer-images0 (affected), 2.66-10.mga7 (unaffected), 0 (affected), 2.66-10.mga7.nonfree (unaffected)

Browse GCVE Records

73,834 records in the GCVE database · Updated July 19, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›