ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT INTO in situations involving embedded '\0' characters in filenames, leading to a memory-management error that can be detected by (for example) valgrind. CREATE(Triage):(User=admin) CVE-2019-19959 (https://nvd.nist.gov/vuln/detail/CVE-2019-19959)