Bug 1785318 (CVE-2019-19603)

Summary: CVE-2019-19603 sqlite: mishandling of certain SELECT statements with non-existent VIEW can lead to DoS
Product: [Other] Security Response Reporter: Guilherme de Almeida Suckevicz <gsuckevi>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED ERRATA QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: databases-maint, drizt72, erik-fedora, fedora, itamar, mschorm, odubaj, pkubat, praiskup, rh-spice-bugs, rjones, wilmer5
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2021-10-25 22:14:16 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1785327, 1785328, 1785329, 1792012, 1792013, 1792014    
Bug Blocks: 1785324    

Description Guilherme de Almeida Suckevicz 2019-12-19 17:05:30 UTC 
SQLite 3.30.1 mishandles certain SELECT statements with a nonexistent VIEW, leading to an application crash.

Reference and upstream commit:
https://github.com/sqlite/sqlite/commit/527cbd4a104cb93bf3994b3dd3619a6299a78b13
Comment 1 Guilherme de Almeida Suckevicz 2019-12-19 17:24:13 UTC 
Created mingw-sqlite tracking bugs for this issue:

Affects: epel-7 [bug 1785328]
Affects: fedora-all [bug 1785329]


Created sqlite tracking bugs for this issue:

Affects: fedora-all [bug 1785327]
Comment 4 Marco Benatto 2020-01-31 19:01:43 UTC 
There's an issue with sqlite when using SELECT statments on tables or view which names are like shadow table's name.
This issue makes the sqlite application to crash, causing Deny of Service. Availability impact is rated as high due to the crashing while there's no integrality or confidentialy impact as the attacker cannot alter data ou expose data via this flaw.
Comment 6 errata-xmlrpc 2021-11-09 18:36:53 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2021:4396 https://access.redhat.com/errata/RHSA-2021:4396