Wind River Support Network

HomeDefectsLIN1019-3736

Fixed

LIN1019-3736 : Security Advisory - sqlite3 - CVE-2019-19645

Created: Dec 9, 2019 Updated: Jan 9, 2020

Resolved Date: Dec 31, 2019

Found In Version: 10.19.45.1

Fix Version: 10.19.45.3

Severity: Standard

Applicable for: Wind River Linux LTS 19

Component/s: Userspace

Description

alter.c in SQLite through 3.30.1 allows attackers to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements.

CREATE(Triage):(User=admin) [CVE-2019-19645|https://nvd.nist.gov/vuln/detail/CVE-2019-19645]

CVEs

CVE-2019-19645