vulnerability
Oracle Linux: CVE-2020-13435: ELSA-2021-4396: sqlite security update (MODERATE)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 2 | (AV:L/AC:L/Au:N/C:N/I:N/A:P) | May 23, 2020 | Nov 19, 2021 | Dec 3, 2025 |
Severity
2
CVSS
(AV:L/AC:L/Au:N/C:N/I:N/A:P)
Published
May 23, 2020
Added
Nov 19, 2021
Modified
Dec 3, 2025
Description
SQLite through 3.32.0 has a segmentation fault in sqlite3ExprCodeTarget in expr.c.
A NULL pointer dereference flaw was found in SQLite when rewriting select statements for window functions. This flaw allows an attacker who can execute SQL statements, to crash the application, resulting in a denial of service.
A NULL pointer dereference flaw was found in SQLite when rewriting select statements for window functions. This flaw allows an attacker who can execute SQL statements, to crash the application, resulting in a denial of service.
Solutions
oracle-linux-upgrade-lemonoracle-linux-upgrade-sqliteoracle-linux-upgrade-sqlite-develoracle-linux-upgrade-sqlite-docoracle-linux-upgrade-sqlite-libs
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.