A NULL pointer dereference in the SQLite Session Extension in SQLite 3.53.1 and SQLite trunk builds before check-in e807d4e3798efd53 allows an attacker who can supply a malformed changeset blob to cause a denial of service. The issue occurs when sqlite3changesetapplyv3() applies a corrupt changeset and reaches sqlite3valuetype() with a NULL sqlite3_value pointer.
{
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.37.2-2ubuntu0.6"
},
{
"binary_name": "libsqlite3-0",
"binary_version": "3.37.2-2ubuntu0.6"
},
{
"binary_name": "libsqlite3-tcl",
"binary_version": "3.37.2-2ubuntu0.6"
},
{
"binary_name": "sqlite3",
"binary_version": "3.37.2-2ubuntu0.6"
},
{
"binary_name": "sqlite3-tools",
"binary_version": "3.37.2-2ubuntu0.6"
}
]
}{
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.45.1-1ubuntu2.6"
},
{
"binary_name": "libsqlite3-0",
"binary_version": "3.45.1-1ubuntu2.6"
},
{
"binary_name": "libsqlite3-tcl",
"binary_version": "3.45.1-1ubuntu2.6"
},
{
"binary_name": "sqlite3",
"binary_version": "3.45.1-1ubuntu2.6"
},
{
"binary_name": "sqlite3-tools",
"binary_version": "3.45.1-1ubuntu2.6"
}
]
}{
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.46.1-8ubuntu0.1"
},
{
"binary_name": "libsqlite3-0",
"binary_version": "3.46.1-8ubuntu0.1"
},
{
"binary_name": "libsqlite3-ext-csv",
"binary_version": "3.46.1-8ubuntu0.1"
},
{
"binary_name": "libsqlite3-ext-icu",
"binary_version": "3.46.1-8ubuntu0.1"
},
{
"binary_name": "libsqlite3-tcl",
"binary_version": "3.46.1-8ubuntu0.1"
},
{
"binary_name": "sqlite3",
"binary_version": "3.46.1-8ubuntu0.1"
},
{
"binary_name": "sqlite3-tools",
"binary_version": "3.46.1-8ubuntu0.1"
}
]
}{
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.46.1-9ubuntu0.1"
},
{
"binary_name": "libsqlite3-0",
"binary_version": "3.46.1-9ubuntu0.1"
},
{
"binary_name": "libsqlite3-ext-csv",
"binary_version": "3.46.1-9ubuntu0.1"
},
{
"binary_name": "libsqlite3-ext-icu",
"binary_version": "3.46.1-9ubuntu0.1"
},
{
"binary_name": "libsqlite3-tcl",
"binary_version": "3.46.1-9ubuntu0.1"
},
{
"binary_name": "sqlite3",
"binary_version": "3.46.1-9ubuntu0.1"
},
{
"binary_name": "sqlite3-tools",
"binary_version": "3.46.1-9ubuntu0.1"
}
]
}{
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.8.2-1ubuntu2.2+esm5"
},
{
"binary_name": "libsqlite3-0",
"binary_version": "3.8.2-1ubuntu2.2+esm5"
},
{
"binary_name": "libsqlite3-tcl",
"binary_version": "3.8.2-1ubuntu2.2+esm5"
},
{
"binary_name": "sqlite3",
"binary_version": "3.8.2-1ubuntu2.2+esm5"
}
]
}{
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.11.0-1ubuntu1.5+esm3"
},
{
"binary_name": "libsqlite3-0",
"binary_version": "3.11.0-1ubuntu1.5+esm3"
},
{
"binary_name": "libsqlite3-tcl",
"binary_version": "3.11.0-1ubuntu1.5+esm3"
},
{
"binary_name": "sqlite3",
"binary_version": "3.11.0-1ubuntu1.5+esm3"
}
]
}{
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.22.0-1ubuntu0.7+esm2"
},
{
"binary_name": "libsqlite3-0",
"binary_version": "3.22.0-1ubuntu0.7+esm2"
},
{
"binary_name": "libsqlite3-tcl",
"binary_version": "3.22.0-1ubuntu0.7+esm2"
},
{
"binary_name": "sqlite3",
"binary_version": "3.22.0-1ubuntu0.7+esm2"
}
]
}{
"binaries": [
{
"binary_name": "lemon",
"binary_version": "3.31.1-4ubuntu0.7+esm1"
},
{
"binary_name": "libsqlite3-0",
"binary_version": "3.31.1-4ubuntu0.7+esm1"
},
{
"binary_name": "libsqlite3-tcl",
"binary_version": "3.31.1-4ubuntu0.7+esm1"
},
{
"binary_name": "sqlite3",
"binary_version": "3.31.1-4ubuntu0.7+esm1"
}
]
}