[3.8] sqlite: Multiple vulnerabilities (CVE-2019-5018, CVE-2019-8457)| ID: oval:org.secpod.oval:def:1801515 | Date: (C)2019-07-31 (M)2023-11-10 |
| Class: PATCH | Family: unix |
CVE-2019-5018: use-after-free in window function leading to remote code execution An exploitable use after free vulnerability exists in the window function functionality of Sqlite3 3.26.0. A specially crafted SQL command can cause a use after free vulnerability, potentially resulting in remote code execution. An attacker can send a malicious SQL command to trigger this vulnerability
| Platform: |
| Alpine Linux 3.8 |
