Wind River Support Network

HomeDefectsLIN10-2223
Fixed

LIN10-2223 : Security Advisory - sqlite - CVE-2017-15286

Created: Oct 16, 2017    Updated: Dec 3, 2018
Resolved Date: May 20, 2018
Found In Version: 10.17.41.1
Fix Version: 10.17.41.8
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Userspace

Description

SQLite 3.20.1 has a NULL pointer dereference in tableColumnList in shell.c because it fails to consider certain cases where `sqlite3_step(pStmt)==SQLITE_ROW` is false and a data structure is never initialized.

https://nvd.nist.gov/vuln/detail/CVE-2017-15286

Other Downloads


Live chat
Online