vulnerability
Oracle Linux: CVE-2020-9327: ELSA-2020-4442: sqlite security update (MODERATE)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | Feb 21, 2020 | Nov 12, 2020 | Dec 3, 2025 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
Feb 21, 2020
Added
Nov 12, 2020
Modified
Dec 3, 2025
Description
In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger a NULL pointer dereference and segmentation fault because of generated column optimizations.
A NULL pointer dereference was found in SQLite in the way it executes select statements with column optimizations. An attacker who is able to execute SQL statements can use this flaw to crash the application.
A NULL pointer dereference was found in SQLite in the way it executes select statements with column optimizations. An attacker who is able to execute SQL statements can use this flaw to crash the application.
Solutions
oracle-linux-upgrade-lemonoracle-linux-upgrade-sqliteoracle-linux-upgrade-sqlite-develoracle-linux-upgrade-sqlite-docoracle-linux-upgrade-sqlite-libs
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.