[ubuntu/vivid-security] sqlite3 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Thu Jul 30 16:39:09 UTC 2015

sqlite3 ( vivid-security; urgency=medium

  * SECURITY UPDATE: improper dequoting of collation-sequence names
    - debian/patches/CVE-2015-3414.patch: handle dequoting in src/expr.c,
      src/parse.y, src/sqliteInt.h, src/where.c, added tests to
    - CVE-2015-3414
  * SECURITY UPDATE: improper implementation of comparison operators
    - debian/patches/CVE-2015-3415.patch: properly handle MEM_Dyn flag on
      registers in src/vdbe.c.
    - CVE-2015-3415
  * SECURITY UPDATE: improper large integers handling in printf function
    - debian/patches/CVE-2015-3416.patch: handle large integers in
      src/printf.c, added tests to test/printf.test.
    - CVE-2015-3416

Date: 2015-07-15 16:31:20.708076+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Vivid-changes mailing list