Overview

File _patchinfo of Package patchinfo.10675

<patchinfo incident="10675">
  <issue tracker="bnc" id="1131576">VUL-0: CVE-2018-20506: sqlite3: SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow in merge operation</issue>
  <issue tracker="bnc" id="1119687">VUL-0: CVE-2018-20346: sqlite3: remote code execution vulnerability (Magellan)</issue>
  <issue tracker="bnc" id="987394">VUL-2: CVE-2016-6153: sqlite2,sqlite3: SQLite Tempdir Selection Vulnerability</issue>
  <issue tracker="cve" id="2018-20506"/>
  <issue tracker="cve" id="2018-20346"/>
  <issue tracker="cve" id="2016-6153"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>rmax</packager>
  <description>This update for sqlite3 fixes the following issues:

Security issues fixed: 

- CVE-2018-20506: Fixed an integer overflow when FTS3 extension is enabled (bsc#1131576).    
- CVE-2018-20346: Fixed a remote code execution vulnerability in FTS3 (Magellan) (bsc#1119687).
- CVE-2016-6153: Fixed incorrect permissions when creating temporary files (bsc#987394).	  
</description>
  <summary>Security update for sqlite3</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places