SQLite before 3.53.2 contains a heap-based buffer overflow vulnerability in the FTS5 full-text search extension that allows attackers to cause a crash or execute arbitrary code by supplying a crafted database with malicious continuation page metadata specifying a szLeaf value smaller than 4. Attackers can trigger an integer underflow in fts5ChunkIterate() causing an inflated remaining byte count during FTS5 MATCH query processing, leading to a heap buffer overflow of attacker-controlled data in applications compiled with SQLITEENABLEFTS5.
{
"availability": "No subscription required",
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.37.2-2ubuntu0.6"
},
{
"binary_name": "libsqlite3-0",
"binary_version": "3.37.2-2ubuntu0.6"
},
{
"binary_name": "libsqlite3-tcl",
"binary_version": "3.37.2-2ubuntu0.6"
},
{
"binary_name": "sqlite3",
"binary_version": "3.37.2-2ubuntu0.6"
},
{
"binary_version": "3.37.2-2ubuntu0.6",
"binary_name": "sqlite3-tools"
}
]
}{
"availability": "No subscription required",
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.45.1-1ubuntu2.6"
},
{
"binary_name": "libsqlite3-0",
"binary_version": "3.45.1-1ubuntu2.6"
},
{
"binary_version": "3.45.1-1ubuntu2.6",
"binary_name": "libsqlite3-tcl"
},
{
"binary_name": "sqlite3",
"binary_version": "3.45.1-1ubuntu2.6"
},
{
"binary_version": "3.45.1-1ubuntu2.6",
"binary_name": "sqlite3-tools"
}
]
}{
"availability": "No subscription required",
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.46.1-8ubuntu0.1"
},
{
"binary_version": "3.46.1-8ubuntu0.1",
"binary_name": "libsqlite3-0"
},
{
"binary_name": "libsqlite3-ext-csv",
"binary_version": "3.46.1-8ubuntu0.1"
},
{
"binary_name": "libsqlite3-ext-icu",
"binary_version": "3.46.1-8ubuntu0.1"
},
{
"binary_name": "libsqlite3-tcl",
"binary_version": "3.46.1-8ubuntu0.1"
},
{
"binary_name": "sqlite3",
"binary_version": "3.46.1-8ubuntu0.1"
},
{
"binary_version": "3.46.1-8ubuntu0.1",
"binary_name": "sqlite3-tools"
}
]
}{
"availability": "No subscription required",
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.46.1-9ubuntu0.1"
},
{
"binary_name": "libsqlite3-0",
"binary_version": "3.46.1-9ubuntu0.1"
},
{
"binary_version": "3.46.1-9ubuntu0.1",
"binary_name": "libsqlite3-ext-csv"
},
{
"binary_version": "3.46.1-9ubuntu0.1",
"binary_name": "libsqlite3-ext-icu"
},
{
"binary_name": "libsqlite3-tcl",
"binary_version": "3.46.1-9ubuntu0.1"
},
{
"binary_version": "3.46.1-9ubuntu0.1",
"binary_name": "sqlite3"
},
{
"binary_version": "3.46.1-9ubuntu0.1",
"binary_name": "sqlite3-tools"
}
]
}{
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.8.2-1ubuntu2.2+esm5"
},
{
"binary_version": "3.8.2-1ubuntu2.2+esm5",
"binary_name": "libsqlite3-0"
},
{
"binary_version": "3.8.2-1ubuntu2.2+esm5",
"binary_name": "libsqlite3-tcl"
},
{
"binary_name": "sqlite3",
"binary_version": "3.8.2-1ubuntu2.2+esm5"
}
]
}{
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.11.0-1ubuntu1.5+esm3"
},
{
"binary_version": "3.11.0-1ubuntu1.5+esm3",
"binary_name": "libsqlite3-0"
},
{
"binary_name": "libsqlite3-tcl",
"binary_version": "3.11.0-1ubuntu1.5+esm3"
},
{
"binary_name": "sqlite3",
"binary_version": "3.11.0-1ubuntu1.5+esm3"
}
]
}{
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.22.0-1ubuntu0.7+esm2"
},
{
"binary_name": "libsqlite3-0",
"binary_version": "3.22.0-1ubuntu0.7+esm2"
},
{
"binary_name": "libsqlite3-tcl",
"binary_version": "3.22.0-1ubuntu0.7+esm2"
},
{
"binary_version": "3.22.0-1ubuntu0.7+esm2",
"binary_name": "sqlite3"
}
]
}{
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.31.1-4ubuntu0.7+esm1"
},
{
"binary_name": "libsqlite3-0",
"binary_version": "3.31.1-4ubuntu0.7+esm1"
},
{
"binary_name": "libsqlite3-tcl",
"binary_version": "3.31.1-4ubuntu0.7+esm1"
},
{
"binary_name": "sqlite3",
"binary_version": "3.31.1-4ubuntu0.7+esm1"
}
]
}