Uploaded image for project: 'Qt'
  1. Qt
  2. QTBUG-82533

CVE-2019-19880 in SQLite3.31.1 : CVE-2020-9327

    XMLWordPrintable

    Details

    • Commits:
      2c1b4e37b936f64d6b52e2bc10ff97184a714b9a (qt/qtbase/5.14.2) cf925913486f83d2556308d2f9e545a36abb6fa4 (qt/qtbase/5.12)

      Description

      Hello

      There is new vulnerability discovered in SQLite 3.31.1: CVE-2020-9327

      https://nvd.nist.gov/vuln/detail/CVE-2020-9327

      In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger a NULL pointer dereference and segmentation fault because of generated column optimizations.

      Could you please share your plans for fixing it in Qt?

      BR/Barbara Rosinska

        Attachments

        For Gerrit Dashboard: QTBUG-82533
        # Subject Branch Project Status CR V

          Activity

            People

            Assignee:
            andysh Andy Shaw
            Reporter:
            barbarar Barbara Rosinska
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Gerrit Reviews

                There are no open Gerrit changes