diff options
| author | Baruch Siach <baruch@tkos.co.il> | 2017-10-22 16:00:08 +0200 |
|---|---|---|
| committer | Peter Korsgaard <peter@korsgaard.com> | 2017-10-23 00:40:34 +0200 |
| commit | a820bdd0d36cbcd3277c3530ad0ecc581d1a6c70 (patch) | |
| tree | cad7feb17dbf528f994def87c33a58200997fdfb /package/cppcms/cppcms.hash | |
| parent | e27c8e67f45cbc9e853228f669ce483a83b63265 (diff) | |
| download | buildroot-a820bdd0d36cbcd3277c3530ad0ecc581d1a6c70.tar.gz buildroot-a820bdd0d36cbcd3277c3530ad0ecc581d1a6c70.zip | |
sqlite: add security patches
CVE-2017-13685: The dump_callback function in SQLite 3.20.0 allows
remote attackers to cause a denial of service (EXC_BAD_ACCESS and
application crash) via a crafted file.
CVE-2017-15286: SQLite 3.20.1 has a NULL pointer dereference in
tableColumnList in shell.c
because it fails to consider certain cases where
`sqlite3_step(pStmt)==SQLITE_ROW` is false and a data structure is never
initialized.
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
(cherry picked from commit d3c96bd5a6d3d64ab9c61104c6078b4bc89b12ec)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Diffstat (limited to 'package/cppcms/cppcms.hash')
0 files changed, 0 insertions, 0 deletions

