Overview Details

File _patchinfo of Package patchinfo

<patchinfo incident="10002">
  <issue tracker="bnc" id="1119687">VUL-0: CVE-2018-20346: sqlite3: remote code execution vulnerability (Magellan)</issue>
  <issue tracker="bnc" id="1131576">VUL-0: CVE-2018-20506: sqlite3: SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow in merge operation</issue>
  <issue tracker="cve" id="2018-20506"/>
  <issue tracker="cve" id="2018-20346"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>rmax</packager>
  <description>This update for sqlite3 fixes the following issues:

Security issues fixed: 

- CVE-2018-20346: Fixed a remote code execution vulnerability in FTS3 (Magellan) (bsc#1119687).
- CVE-2018-20506: Fixed an integer overflow when FTS3 extension is enabled (bsc#1131576).    

This update was imported from the SUSE:SLE-12-SP1:Update update project.</description>
  <summary>Security update for sqlite3</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places