CVE-2020-15358 - Vulncode-DB

CVE-2020-15358 (NVD)

2020-06-27

In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation.

Products	Icloud, Ipados, Iphone_os, Macos, Tvos, Watchos, Ubuntu_linux, Communications_cloud_native_core_policy, Communications_messaging_server, Communications_network_charging_and_control, Enterprise_manager_ops_center, Hyperion_infrastructure_technology, Mysql, Outside_in_technology, Sinec_infrastructure_network_services, Sqlite
Type	Out-of-bounds Write (CWE-787)
First patch	- None (likely due to unavailable code)
Links	• https://www.sqlite.org/src/info/10fa79d00f8091e5 • http://seclists.org/fulldisclosure/2020/Dec/32 • http://seclists.org/fulldisclosure/2020/Nov/20 • https://www.oracle.com/security-alerts/cpuapr2022.html • https://security.gentoo.org/glsa/202007-26 More/Less (17) • https://support.apple.com/kb/HT211850 • https://www.sqlite.org/src/tktview?name=8f157e8010 • https://support.apple.com/kb/HT211843 • https://support.apple.com/kb/HT211931 • https://www.oracle.com/security-alerts/cpuoct2020.html • https://www.sqlite.org/src/timeline?p=version-3.32.3&bt=version-3.32.2 • https://support.apple.com/kb/HT211847 • http://seclists.org/fulldisclosure/2020/Nov/19 • http://seclists.org/fulldisclosure/2020/Nov/22 • https://security.netapp.com/advisory/ntap-20200709-0001/ • http://seclists.org/fulldisclosure/2021/Feb/14 • https://www.oracle.com/security-alerts/cpujan2021.html • https://usn.ubuntu.com/4438-1/ • https://support.apple.com/kb/HT212147 • https://www.oracle.com/security-alerts/cpuApr2021.html • https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf • https://support.apple.com/kb/HT211844