| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|
| CVE-2024-0232 | fixed | fixed | fixed | fixed | vulnerable (no DSA) | fixed | fixed | A heap use-after-free issue has been identified in SQLite in the jsonP ... |
| CVE-2023-7104 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classifie ... |
| CVE-2021-31239 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue found in SQLite SQLite3 v.3.35.4 that allows a remote attacke ... |
| CVE-2020-13631 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | SQLite before 3.32.0 allows a virtual table to be renamed to the name ... |
| CVE-2019-19924 | fixed | fixed | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | SQLite 3.30.1 mishandles certain parser-tree rewriting, related to exp ... |
| CVE-2019-19645 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | alter.c in SQLite through 3.30.1 allows attackers to trigger infinite ... |
| CVE-2019-19603 | fixed | fixed | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | SQLite 3.30.1 mishandles certain SELECT statements with a nonexistent ... |
| CVE-2019-8457 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | SQLite3 from 3.6.0 to and including 3.27.2 is vulnerable to heap out-o ... |
| CVE-2019-5827 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | Integer overflow in SQLite via WebSQL in Google Chrome prior to 74.0.3 ... |
| Bug | Description |
|---|
| TEMP-0566326-9A899F | sqlite: info leak |
| CVE-2022-46908 | SQLite through 3.40.0, when relying on --safe for execution of an untr ... |
| CVE-2021-20227 | A flaw was found in SQLite's SELECT query functionality (src/select.c) ... |
| CVE-2020-35527 | In SQLite 3.31.1, there is an out of bounds access problem through ALT ... |
| CVE-2020-35525 | In SQlite 3.31.1, a potential null pointer derreference was found in t ... |
| CVE-2020-24736 | Buffer Overflow vulnerability found in SQLite3 v.3.27.1 and before all ... |
| CVE-2020-15358 | In SQLite before 3.32.3, select.c mishandles query-flattener optimizat ... |
| CVE-2020-13871 | SQLite 3.32.2 has a use-after-free in resetAccumulator in select.c bec ... |
| CVE-2020-13632 | ext/fts3/fts3_snippet.c in SQLite before 3.32.0 has a NULL pointer der ... |
| CVE-2020-13630 | ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3Ev ... |
| CVE-2020-13435 | SQLite through 3.32.0 has a segmentation fault in sqlite3ExprCodeTarge ... |
| CVE-2020-13434 | SQLite through 3.32.0 has an integer overflow in sqlite3_str_vappendf ... |
| CVE-2020-11655 | SQLite through 3.31.1 allows attackers to cause a denial of service (s ... |
| CVE-2020-9327 | In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger ... |
| CVE-2019-20218 | selectExpander in select.c in SQLite 3.30.1 proceeds with WITH stack u ... |
| CVE-2019-19959 | ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT ... |
| CVE-2019-19926 | multiSelect in select.c in SQLite 3.30.1 mishandles certain errors dur ... |
| CVE-2019-19925 | zipfileUpdate in ext/misc/zipfile.c in SQLite 3.30.1 mishandles a NULL ... |
| CVE-2019-19923 | flattenSubquery in select.c in SQLite 3.30.1 mishandles certain uses o ... |
| CVE-2019-19880 | exprListAppendList in window.c in SQLite 3.30.1 allows attackers to tr ... |
| CVE-2019-19646 | pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an integrity_ ... |
| CVE-2019-19317 | lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed b ... |
| CVE-2019-19242 | SQLite 3.30.1 mishandles pExpr->y.pTab, as demonstrated by the TK_COLU ... |
| CVE-2019-16168 | In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can cras ... |
| CVE-2019-9937 | In SQLite 3.27.2, interleaving reads and writes in a single transactio ... |
| CVE-2019-9936 | In SQLite 3.27.2, running fts5 prefix queries inside a transaction cou ... |
| CVE-2019-5018 | An exploitable use after free vulnerability exists in the window funct ... |
| CVE-2018-20506 | SQLite before 3.25.3, when the FTS3 extension is enabled, encounters a ... |
| CVE-2018-20505 | SQLite 3.25.2, when queries are run on a table with a malformed PRIMAR ... |
| CVE-2018-20346 | SQLite before 3.25.3, when the FTS3 extension is enabled, encounters a ... |
| CVE-2018-8740 | In SQLite through 3.22.0, databases whose schema is corrupted using a ... |
| CVE-2017-15286 | SQLite 3.20.1 has a NULL pointer dereference in tableColumnList in she ... |
| CVE-2017-10989 | The getNodeSize function in ext/rtree/rtree.c in SQLite through 3.19.3 ... |
| CVE-2017-2520 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... |
| CVE-2017-2519 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... |
| CVE-2017-2518 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... |
| CVE-2017-2513 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... |
| CVE-2016-6153 | os_unix.c in SQLite before 3.13.0 improperly implements the temporary ... |
| CVE-2015-3416 | The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does n ... |
| CVE-2015-3415 | The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not ... |
| CVE-2015-3414 | SQLite before 3.8.9 does not properly implement the dequoting of colla ... |
| CVE-2013-7443 | Buffer overflow in the skip-scan optimization in SQLite 3.8.2 allows r ... |