Overview Repositories Revisions Requests Users Attributes Meta

Revisions of sqlite3

Reinhard Max's avatar Reinhard Max (rmax) committed (revision 271)
Reinhard Max's avatar Reinhard Max (rmax) committed (revision 270) 
- SQLite3 3.37.0:
  * STRICT tables provide a prescriptive style of data type
    management, for developers who prefer that kind of thing.
  * When adding columns that contain a CHECK constraint or a
    generated column containing a NOT NULL constraint, the
    ALTER TABLE ADD COLUMN now checks new constraints against
    preexisting rows in the database and will only proceed if no
    constraints are violated.
  * Added the PRAGMA table_list statement.
  * Add the .connection command, allowing the CLI to keep multiple
    database connections open at the same time.
  * Add the --safe command-line option that disables dot-commands
    and SQL statements that might cause side-effects that extend
    beyond the single database file named on the command-line.
  * CLI: Performance improvements when reading SQL statements that
    span many lines.
  * Added the sqlite3_autovacuum_pages() interface.
  * The sqlite3_deserialize() does not and has never worked
    for the TEMP database. That limitation is now noted in the
    documentation.
  * The query planner now omits ORDER BY clauses on subqueries and
    views if removing those clauses does not change the semantics
    of the query.
  * The generate_series table-valued function extension is modified
    so that the first parameter ("START") is now required. This is
    done as a way to demonstrate how to write table-valued
    functions with required parameters. The legacy behavior is
    available using the -DZERO_ARGUMENT_GENERATE_SERIES
    compile-time option.
  * Added new sqlite3_changes64() and sqlite3_total_changes64()
    interfaces.
  * Added the SQLITE_OPEN_EXRESCODE flag option to sqlite3_open_v2().
  * Use less memory to hold the database schema.
Reinhard Max's avatar Reinhard Max (rmax) accepted request 901301 from Paolo Stivanin's avatar Paolo Stivanin (polslinux) (revision 269) 
- SQLite3 3.36.0:
  * Improvement to the EXPLAIN QUERY PLAN output to make it
    easier to understand.
  * Byte-order marks at the start of a token are skipped
    as if they were whitespace.
  * An error is raised on any attempt to access the rowid of a VIEW
    or subquery. Formerly, the rowid of a VIEW would be indeterminate
    and often would be NULL. The -DSQLITE_ALLOW_ROWID_IN_VIEW
    compile-time option is available to restore the legacy behavior
    for applications that need it.
  * The sqlite3_deserialize() and sqlite3_serialize() interfaces
    are now enabled by default. The -DSQLITE_ENABLE_DESERIALIZE
    compile-time option is no longer required. Instead, there is 
    a new -DSQLITE_OMIT_DESERIALIZE compile-time option to omit
    those interfaces.
  * The "memdb" VFS now allows the same in-memory database
    to be shared among multiple database connections in the same
    process as long as the database name begins with "/".
  * Back out the EXISTS-to-IN optimization (item 8b in the
    SQLite 3.35.0 change log) as it was found to slow down
    queries more often than speed them up.
  * Improve the constant-propagation optimization so that it works
    on non-join queries.
  * The REGEXP extension is now included in CLI builds.
buildservice-autocommit accepted request 887264 from Reinhard Max's avatar Reinhard Max (rmax) (revision 268) 
baserev update by copy to link target
Reinhard Max's avatar Reinhard Max (rmax) accepted request 886908 from Dirk Mueller's avatar Dirk Mueller (dirkmueller) (revision 266) 
- use https urls
Reinhard Max's avatar Reinhard Max (rmax) committed (revision 265) 
Revert the merging of SLE-12 bug references into the changes file
Reinhard Max's avatar Reinhard Max (rmax) committed (revision 264) 
More merges from SLE12 to the changes file
Reinhard Max's avatar Reinhard Max (rmax) committed (revision 263)
Reinhard Max's avatar Reinhard Max (rmax) committed (revision 261) 
- The following CVEs have been fixed in upstream releases up to
  this point, but were not mentioned in the chane log so far:
  * bsc#1173641, CVE-2020-15358: heap-based buffer overflow in
    multiSelectOrderBy due to mishandling of query-flattener
    optimization
  * bsc#1164719, CVE-2020-9327: NULL pointer dereference and
    segmentation fault because of generated column optimizations in
    isAuxiliaryVtabOperator
  * bsc#1160439, CVE-2019-20218: selectExpander in select.c proceeds
    with WITH stack unwinding even after a parsing error
  * bsc#1160438, CVE-2019-19959: memory-management error via
    ext/misc/zipfile.c involving embedded '\0' input
  * bsc#1160309, CVE-2019-19923: improper handling  of  certain uses
    of SELECT DISTINCT in flattenSubquery may lead to null pointer
    dereference
  * bsc#1159850, CVE-2019-19924: improper error handling in
    sqlite3WindowRewrite()
  * bsc#1159847, CVE-2019-19925: improper handling of NULL pathname
    during an update of a ZIP archive
  * bsc#1159715, CVE-2019-19926: improper handling  of certain
    errors during parsing  multiSelect in select.c
  * bsc#1159491, CVE-2019-19880: exprListAppendList in window.c
    allows attackers to trigger an invalid pointer dereference
  * bsc#1158960, CVE-2019-19603: during handling of CREATE TABLE
    and CREATE VIEW statements, does not consider confusion with
    a shadow table name
  * bsc#1158959, CVE-2019-19646: pragma.c mishandles NOT NULL in an
    integrity_check PRAGMA command in certain cases of generated
    columns
  * bsc#1158958, CVE-2019-19645: alter.c allows attackers to trigger
    infinite recursion via certain types of self-referential views
    in conjunction with ALTER TABLE statements
  * bsc#1158812, CVE-2019-19317: lookupName in resolve.c omits bits
    from the colUsed bitmask in the case of a generated column,
    which allows attackers to cause a denial of service
  * bsc#1157818, CVE-2019-19244: sqlite3,sqlite2,sqlite: The
    function sqlite3Select in select.c allows a crash if a
    sub-select uses both DISTINCT and window functions, and also
    has certain ORDER BY usage
  * bsc#928701, CVE-2015-3415: sqlite3VdbeExec comparison operator
    vulnerability
  * bsc#928700, CVE-2015-3414: sqlite3,sqlite2: dequoting of
    collation-sequence names
  * CVE-2018-20346, bsc#1119687: remote code execution
    vulnerability in FTS3 (Magellan).
buildservice-autocommit accepted request 880148 from Reinhard Max's avatar Reinhard Max (rmax) (revision 260) 
baserev update by copy to link target
Reinhard Max's avatar Reinhard Max (rmax) accepted request 880128 from Martin Liška's avatar Martin Liška (marxin) (revision 259) 
- Fix typo in macro definition.
buildservice-autocommit accepted request 879153 from Reinhard Max's avatar Reinhard Max (rmax) (revision 257) 
baserev update by copy to link target
Reinhard Max's avatar Reinhard Max (rmax) accepted request 879097 from Dirk Mueller's avatar Dirk Mueller (dirkmueller) (revision 256) 
- update to 3.35.0:
  * Added built-in SQL math functions().
    (Requires the -DSQLITE_ENABLE_MATH_FUNCTIONS compile-time option.)
  * Added support for ALTER TABLE DROP COLUMN.
  * Generalize UPSERT:
      * Allow multiple ON CONFLICT clauses that are evaluated in order,
      * The final ON CONFLICT clause may omit the conflict target and yet still use DO UPDATE.
  * Add support for the RETURNING clause on DELETE, INSERT, and UPDATE statements.
  * Use less memory when running VACUUM on databases containing very large TEXT
    or BLOB values. It is no longer necessary to hold the entire TEXT or BLOB
    in memory all at once.
  * Add support for the MATERIALIZED and NOT MATERIALIZED hints when specifying
    common table expressions. The default behavior was formerly NOT
    MATERIALIZED, but is now changed to MATERIALIZED for CTEs that are used
    more than once.
  * The SQLITE_DBCONFIG_ENABLE_TRIGGER and SQLITE_DBCONFIG_ENABLE_VIEW settings
    are modified so that they only control triggers and views in the main
    database schema or in attached database schemas and not in the TEMP schema.
    TEMP triggers and views are always allowed.
  * Query planner/optimizer improvements
  * Enhance the ".stats" command to accept new arguments "stmt" and "vmstep",
    causing prepare statement statistics and only the virtual-machine step
    count to be shown, respectively.
  * Add the ".filectrl data_version" command.
  * Enhance the ".once" and ".output" commands so that if the destination
    argument begins with "|" (indicating that output is redirected into a pipe)
    then the argument does not need to be quoted.
  * Fix a bug in the IN-operator optimization of version 3.33.0 that can cause
    an incorrect answer.
  * Fix incorrect answers from the LIKE operator if the pattern ends with "%"
buildservice-autocommit accepted request 866634 from Reinhard Max's avatar Reinhard Max (rmax) (revision 255) 
baserev update by copy to link target
Reinhard Max's avatar Reinhard Max (rmax) accepted request 865503 from Andreas Stieger's avatar Andreas Stieger (AndreasStieger) (revision 254) 
SQLite 3.34.1 (boo#1181261)
Displaying revisions 61 - 80 of 333
openSUSE Build Service is sponsored by
Places