Scientific Linux SL6.x Advisory 2015:1634-1 Moderate SQLite Buffer Overflow

Aug 17, 2015 •

LinuxSecurity Advisories

1 - 2 min read

Scientific Large Esm H500

Topics Covered

security advisory buffer overflow moderate severity local attack SQLite Scientific Linux

Moderate: sqlite security update

Date: Mon, 17 Aug 2015 16:37:16 +0000
Reply-To: scientific-linux-users@
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Subject: Security ERRATA Moderate: sqlite on SL6.x i386/x86_64
MIME-Version: 1.0
Message-ID: <20150817163716.9756.76999@slpackages.fnal.gov>

Synopsis: Moderate: sqlite security update
Advisory ID: SLSA-2015:1634-1
Issue Date: 2015-08-17
CVE Numbers: CVE-2015-3416
--

It was found that SQLite's sqlite3VXPrintf() function did not properly
handle precision and width values during floating-point conversions. A
local attacker could submit a specially crafted SELECT statement that
would crash the SQLite process, or have other unspecified impacts.
(CVE-2015-3416)
--

SL6
 x86_64
 sqlite-3.6.20-1.el6_7.2.i686.rpm
 sqlite-3.6.20-1.el6_7.2.x86_64.rpm
 sqlite-debuginfo-3.6.20-1.el6_7.2.i686.rpm
 sqlite-debuginfo-3.6.20-1.el6_7.2.x86_64.rpm
 lemon-3.6.20-1.el6_7.2.x86_64.rpm
 sqlite-devel-3.6.20-1.el6_7.2.i686.rpm
 sqlite-devel-3.6.20-1.el6_7.2.x86_64.rpm
 sqlite-doc-3.6.20-1.el6_7.2.x86_64.rpm
 sqlite-tcl-3.6.20-1.el6_7.2.x86_64.rpm
 i386
 sqlite-3.6.20-1.el6_7.2.i686.rpm
 sqlite-debuginfo-3.6.20-1.el6_7.2.i686.rpm
 lemon-3.6.20-1.el6_7.2.i686.rpm
 sqlite-devel-3.6.20-1.el6_7.2.i686.rpm
 sqlite-doc-3.6.20-1.el6_7.2.i686.rpm
 sqlite-tcl-3.6.20-1.el6_7.2.i686.rpm

- Scientific Linux Development Team

Powered By

Linux Security Footer

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Your message here