Download
| Alert*
oval:org.secpod.oval:def:67371
The host is installed with Apple iCloud before 7.21 and is prone to unspecified vulnerabilities. A flaw is present in the application, which fails to properly handle multiple issues in SQLite. Successful exploitation could lead to a unspecified impact. oval:org.secpod.oval:def:67052 sqlite3: C library that implements an SQL database engine SQLite could be made to crash or run programs if it processed a specially crafted query. oval:org.secpod.oval:def:67588 The host is installed with Apple Mac OS X 10.15.7 or Apple MacOS 11 before 11.0.1 and is prone to unspecified vulnerabilities. A flaw is present in the application, which fails to properly handle multiple issues in SQLite. Successful exploitation could allow attackers to cause unspecified impact. oval:org.secpod.oval:def:65704 The host is missing a security update according to Apple advisory. The update is required to fix a cross site scripting vulnerability. A flaw is present in the application, which fails to handle an input validation issue. Successful exploitation could lead to a cross site scripting attack while proc ... oval:org.secpod.oval:def:506154 SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database w ... oval:org.secpod.oval:def:705556 sqlite3: C library that implements an SQL database engine SQLite could be made to crash or run programs if it processed a specially crafted query. oval:org.secpod.oval:def:4501388 SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database w ... oval:org.secpod.oval:def:2106267 Oracle Solaris 11 - ( CVE-2020-13871 ) oval:org.secpod.oval:def:2500433 SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database w ... oval:org.secpod.oval:def:1504905 [3.26.0-13] - enabled fts3conf.test on s390x and ppc64 architectures [3.26.0-12] - Fixed CVE-2020-13434 - Fixed CVE-2020-15358 oval:org.secpod.oval:def:73577 SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database w ... oval:org.secpod.oval:def:89045682 This update for sqlite3 fixes the following issues: sqlite3 is sync version 3.36.0 from Factory . The following CVEs have been fixed in upstream releases up to this point, but were not mentioned in the change log so far: * bsc#1173641, CVE-2020-15358: heap-based buffer overflow in multiSelectOrderBy ... oval:org.secpod.oval:def:89045120 This update for sqlite3 fixes the following issues: - Update to version 3.36.0 - CVE-2020-15358: heap-based buffer overflow in multiSelectOrderBy due to mishandling of query-flattener optimization - CVE-2020-9327: NULL pointer dereference and segmentation fault because of generated column optimizat ... oval:org.secpod.oval:def:89047246 This update for sqlite3 fixes the following issues: - Update to version 3.36.0 - CVE-2020-15358: heap-based buffer overflow in multiSelectOrderBy due to mishandling of query-flattener optimization - CVE-2020-9327: NULL pointer dereference and segmentation fault because of generated column optimizat ... oval:org.secpod.oval:def:68751 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple issues. Successful exploitation allow attackers to execute arbitrary code or cause denial of service. |