[ubuntu/vivid-updates] sqlite3 3.8.7.4-1ubuntu0.1 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Thu Jul 30 16:58:19 UTC 2015
sqlite3 (3.8.7.4-1ubuntu0.1) vivid-security; urgency=medium
* SECURITY UPDATE: improper dequoting of collation-sequence names
- debian/patches/CVE-2015-3414.patch: handle dequoting in src/expr.c,
src/parse.y, src/sqliteInt.h, src/where.c, added tests to
test/collate1.test.
- CVE-2015-3414
* SECURITY UPDATE: improper implementation of comparison operators
- debian/patches/CVE-2015-3415.patch: properly handle MEM_Dyn flag on
registers in src/vdbe.c.
- CVE-2015-3415
* SECURITY UPDATE: improper large integers handling in printf function
- debian/patches/CVE-2015-3416.patch: handle large integers in
src/printf.c, added tests to test/printf.test.
- CVE-2015-3416
Date: 2015-07-15 16:31:20.708076+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/sqlite3/3.8.7.4-1ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Vivid-changes
mailing list