Revisions of sqlite3
Reinhard Max (rmax)
accepted
request 945927
from
Andreas Stieger (AndreasStieger)
(revision 273)
sqlite3 3.37.2
Reinhard Max (rmax)
accepted
request 943471
from
Andreas Stieger (AndreasStieger)
(revision 272)
sqlite3 3.37.1
Reinhard Max (rmax)
committed
(revision 271)
Reinhard Max (rmax)
committed
(revision 270)
- SQLite3 3.37.0: * STRICT tables provide a prescriptive style of data type management, for developers who prefer that kind of thing. * When adding columns that contain a CHECK constraint or a generated column containing a NOT NULL constraint, the ALTER TABLE ADD COLUMN now checks new constraints against preexisting rows in the database and will only proceed if no constraints are violated. * Added the PRAGMA table_list statement. * Add the .connection command, allowing the CLI to keep multiple database connections open at the same time. * Add the --safe command-line option that disables dot-commands and SQL statements that might cause side-effects that extend beyond the single database file named on the command-line. * CLI: Performance improvements when reading SQL statements that span many lines. * Added the sqlite3_autovacuum_pages() interface. * The sqlite3_deserialize() does not and has never worked for the TEMP database. That limitation is now noted in the documentation. * The query planner now omits ORDER BY clauses on subqueries and views if removing those clauses does not change the semantics of the query. * The generate_series table-valued function extension is modified so that the first parameter ("START") is now required. This is done as a way to demonstrate how to write table-valued functions with required parameters. The legacy behavior is available using the -DZERO_ARGUMENT_GENERATE_SERIES compile-time option. * Added new sqlite3_changes64() and sqlite3_total_changes64() interfaces. * Added the SQLITE_OPEN_EXRESCODE flag option to sqlite3_open_v2(). * Use less memory to hold the database schema.
Reinhard Max (rmax)
accepted
request 901301
from
Paolo Stivanin (polslinux)
(revision 269)
- SQLite3 3.36.0: * Improvement to the EXPLAIN QUERY PLAN output to make it easier to understand. * Byte-order marks at the start of a token are skipped as if they were whitespace. * An error is raised on any attempt to access the rowid of a VIEW or subquery. Formerly, the rowid of a VIEW would be indeterminate and often would be NULL. The -DSQLITE_ALLOW_ROWID_IN_VIEW compile-time option is available to restore the legacy behavior for applications that need it. * The sqlite3_deserialize() and sqlite3_serialize() interfaces are now enabled by default. The -DSQLITE_ENABLE_DESERIALIZE compile-time option is no longer required. Instead, there is a new -DSQLITE_OMIT_DESERIALIZE compile-time option to omit those interfaces. * The "memdb" VFS now allows the same in-memory database to be shared among multiple database connections in the same process as long as the database name begins with "/". * Back out the EXISTS-to-IN optimization (item 8b in the SQLite 3.35.0 change log) as it was found to slow down queries more often than speed them up. * Improve the constant-propagation optimization so that it works on non-join queries. * The REGEXP extension is now included in CLI builds.
buildservice-autocommit
accepted
request 887264
from
Reinhard Max (rmax)
(revision 268)
baserev update by copy to link target
Reinhard Max (rmax)
accepted
request 886927
from
Andreas Stieger (AndreasStieger)
(revision 267)
SQLite3 3.35.5
Reinhard Max (rmax)
accepted
request 886908
from
Dirk Mueller (dirkmueller)
(revision 266)
- use https urls
Reinhard Max (rmax)
committed
(revision 265)
Revert the merging of SLE-12 bug references into the changes file
Reinhard Max (rmax)
committed
(revision 264)
More merges from SLE12 to the changes file
Reinhard Max (rmax)
committed
(revision 263)
Reinhard Max (rmax)
accepted
request 882778
from
Andreas Stieger (AndreasStieger)
(revision 262)
SQLite 3.35.4
Reinhard Max (rmax)
committed
(revision 261)
- The following CVEs have been fixed in upstream releases up to this point, but were not mentioned in the chane log so far: * bsc#1173641, CVE-2020-15358: heap-based buffer overflow in multiSelectOrderBy due to mishandling of query-flattener optimization * bsc#1164719, CVE-2020-9327: NULL pointer dereference and segmentation fault because of generated column optimizations in isAuxiliaryVtabOperator * bsc#1160439, CVE-2019-20218: selectExpander in select.c proceeds with WITH stack unwinding even after a parsing error * bsc#1160438, CVE-2019-19959: memory-management error via ext/misc/zipfile.c involving embedded '\0' input * bsc#1160309, CVE-2019-19923: improper handling of certain uses of SELECT DISTINCT in flattenSubquery may lead to null pointer dereference * bsc#1159850, CVE-2019-19924: improper error handling in sqlite3WindowRewrite() * bsc#1159847, CVE-2019-19925: improper handling of NULL pathname during an update of a ZIP archive * bsc#1159715, CVE-2019-19926: improper handling of certain errors during parsing multiSelect in select.c * bsc#1159491, CVE-2019-19880: exprListAppendList in window.c allows attackers to trigger an invalid pointer dereference * bsc#1158960, CVE-2019-19603: during handling of CREATE TABLE and CREATE VIEW statements, does not consider confusion with a shadow table name * bsc#1158959, CVE-2019-19646: pragma.c mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns * bsc#1158958, CVE-2019-19645: alter.c allows attackers to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements * bsc#1158812, CVE-2019-19317: lookupName in resolve.c omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service * bsc#1157818, CVE-2019-19244: sqlite3,sqlite2,sqlite: The function sqlite3Select in select.c allows a crash if a sub-select uses both DISTINCT and window functions, and also has certain ORDER BY usage * bsc#928701, CVE-2015-3415: sqlite3VdbeExec comparison operator vulnerability * bsc#928700, CVE-2015-3414: sqlite3,sqlite2: dequoting of collation-sequence names * CVE-2018-20346, bsc#1119687: remote code execution vulnerability in FTS3 (Magellan).
buildservice-autocommit
accepted
request 880148
from
Reinhard Max (rmax)
(revision 260)
baserev update by copy to link target
Reinhard Max (rmax)
accepted
request 880128
from
Martin Liška (marxin)
(revision 259)
- Fix typo in macro definition.
Reinhard Max (rmax)
accepted
request 879748
from
Andreas Stieger (AndreasStieger)
(revision 258)
SQLite 3.35.2
buildservice-autocommit
accepted
request 879153
from
Reinhard Max (rmax)
(revision 257)
baserev update by copy to link target
Reinhard Max (rmax)
accepted
request 879097
from
Dirk Mueller (dirkmueller)
(revision 256)
- update to 3.35.0: * Added built-in SQL math functions(). (Requires the -DSQLITE_ENABLE_MATH_FUNCTIONS compile-time option.) * Added support for ALTER TABLE DROP COLUMN. * Generalize UPSERT: * Allow multiple ON CONFLICT clauses that are evaluated in order, * The final ON CONFLICT clause may omit the conflict target and yet still use DO UPDATE. * Add support for the RETURNING clause on DELETE, INSERT, and UPDATE statements. * Use less memory when running VACUUM on databases containing very large TEXT or BLOB values. It is no longer necessary to hold the entire TEXT or BLOB in memory all at once. * Add support for the MATERIALIZED and NOT MATERIALIZED hints when specifying common table expressions. The default behavior was formerly NOT MATERIALIZED, but is now changed to MATERIALIZED for CTEs that are used more than once. * The SQLITE_DBCONFIG_ENABLE_TRIGGER and SQLITE_DBCONFIG_ENABLE_VIEW settings are modified so that they only control triggers and views in the main database schema or in attached database schemas and not in the TEMP schema. TEMP triggers and views are always allowed. * Query planner/optimizer improvements * Enhance the ".stats" command to accept new arguments "stmt" and "vmstep", causing prepare statement statistics and only the virtual-machine step count to be shown, respectively. * Add the ".filectrl data_version" command. * Enhance the ".once" and ".output" commands so that if the destination argument begins with "|" (indicating that output is redirected into a pipe) then the argument does not need to be quoted. * Fix a bug in the IN-operator optimization of version 3.33.0 that can cause an incorrect answer. * Fix incorrect answers from the LIKE operator if the pattern ends with "%"
buildservice-autocommit
accepted
request 866634
from
Reinhard Max (rmax)
(revision 255)
baserev update by copy to link target
Reinhard Max (rmax)
accepted
request 865503
from
Andreas Stieger (AndreasStieger)
(revision 254)
SQLite 3.34.1 (boo#1181261)
Displaying revisions 61 - 80 of 333