Bug 1784111 (CVE-2019-19317) - CVE-2019-19317 sqlite: omits bits from the colUsed bitmask in the case of a generated column
Summary: CVE-2019-19317 sqlite: omits bits from the colUsed bitmask in the case of a g...
Keywords:
Status: CLOSED NOTABUG
Alias: CVE-2019-19317
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1784112 1784113 1784114 1786536 1786537
Blocks: 1784115
TreeView+ depends on / blocked
 
Reported: 2019-12-16 18:19 UTC by Guilherme de Almeida Suckevicz
Modified: 2021-04-14 09:08 UTC (History)
12 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2020-02-21 06:09:23 UTC


Attachments (Terms of Use)

Description Guilherme de Almeida Suckevicz 2019-12-16 18:19:59 UTC
lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service or possibly have unspecified other impact.

References and upstream commits:
https://github.com/sqlite/sqlite/commit/522ebfa7cee96fb325a22ea3a2464a63485886a8
https://github.com/sqlite/sqlite/commit/73bacb7f93eab9f4bd5a65cbc4ae242acf63c9e3

Comment 1 Guilherme de Almeida Suckevicz 2019-12-16 18:20:25 UTC
Created mingw-sqlite tracking bugs for this issue:

Affects: epel-7 [bug 1784113]
Affects: fedora-all [bug 1784114]


Created sqlite tracking bugs for this issue:

Affects: fedora-all [bug 1784112]

Comment 3 Huzaifa S. Sidhpurwala 2020-02-21 06:03:24 UTC
Statement:

This flaw only affects sqlite databases which contain generated columns. The support for generated columns was added to sqlite-3.31.0 (https://sqlite.org/gencol.html). Therefore sqlite packages shipped with Red Hat products are not vulnerable to this flaw.


Note You need to log in before you can comment on or make changes to this bug.