[ubuntu/jammy-updates] sqlite3 3.37.2-2ubuntu0.3 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Wed Jan 3 18:59:11 UTC 2024
sqlite3 (3.37.2-2ubuntu0.3) jammy-security; urgency=medium
* SECURITY UPDATE: azProhibitedFunctions protection mechanism issue when
using --safe
- debian/patches/50-Fix_safe_mode_authorizer_callback.patch: make sure
that safe mode rejects certain UDFs in src/shell.c.in,
test/shell2.test.
- CVE-2022-46908
* SECURITY UPDATE: heap overflow in sessionReadRecord
- debian/patches/CVE-2023-7104.patch: fix a buffer overread in the
sessions extension that could occur when processing a corrupt
changeset in ext/session/sqlite3session.c.
- CVE-2023-7104
Date: 2024-01-02 15:47:20.811693+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/sqlite3/3.37.2-2ubuntu0.3
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list