It was discovered that SQLite incorrectly handled skip-scan optimization. An attacker could use this issue to cause applications using SQLite to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 LTS. (CVE-2013-7443)
Michal Zalewski discovered that SQLite incorrectly handled dequoting of collation-sequence names. An attacker could use this issue to cause applications using SQLite to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 LTS and Ubuntu 15.04. (CVE-2015-3414)
Michal Zalewski discovered that SQLite incorrectly implemented comparison operators. An attacker could use this issue to cause applications using SQLite to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 15.04. (CVE-2015-3415)
Michal Zalewski discovered that SQLite incorrectly handle printf precision and width values during floating-point conversions. An attacker could use this issue to cause applications using SQLite to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2015-3416)
{ "availability": "No subscription required", "binaries": [ { "binary_version": "3.8.2-1ubuntu2.1", "binary_name": "lemon" }, { "binary_version": "3.8.2-1ubuntu2.1", "binary_name": "libsqlite3-0" }, { "binary_version": "3.8.2-1ubuntu2.1", "binary_name": "libsqlite3-dev" }, { "binary_version": "3.8.2-1ubuntu2.1", "binary_name": "libsqlite3-tcl" }, { "binary_version": "3.8.2-1ubuntu2.1", "binary_name": "sqlite3" } ] }
{ "cves_map": { "ecosystem": "Ubuntu:14.04:LTS", "cves": [ { "severity": [ { "type": "Ubuntu", "score": "medium" } ], "id": "CVE-2013-7443" }, { "severity": [ { "type": "Ubuntu", "score": "low" } ], "id": "CVE-2015-3414" }, { "severity": [ { "type": "Ubuntu", "score": "low" } ], "id": "CVE-2015-3416" } ] } }