From 40aaaa64e86ba6710bbeb31c4615a6ce80e75e11 Mon Sep 17 00:00:00 2001 From: V3n3RiX Date: Wed, 28 Apr 2021 20:21:43 +0100 Subject: gentoo resync : 28.04.2021 --- metadata/glsa/glsa-202103-04.xml | 45 ++++++++++++++++++++++++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 metadata/glsa/glsa-202103-04.xml (limited to 'metadata/glsa/glsa-202103-04.xml') diff --git a/metadata/glsa/glsa-202103-04.xml b/metadata/glsa/glsa-202103-04.xml new file mode 100644 index 000000000000..35516875df4c --- /dev/null +++ b/metadata/glsa/glsa-202103-04.xml @@ -0,0 +1,45 @@ + + + + SQLite: Remote code execution + A vulnerability in SQLite could lead to remote code execution. + sqlite + 2021-03-31 + 2021-03-31 + 777990 + local, remote + + + 3.34.1 + 3.34.1 + + + +

SQLite is a C library that implements an SQL database engine.

+ + +

It was discovered that SQLite incorrectly handled certain sub-queries.

+ + +

A remote attacker could possibly execute arbitrary code with the + privileges of the process, or cause a Denial of Service condition. +

+ + +

There is no known workaround at this time.

+ + +

All SQLite users should upgrade to the latest version:

+ + + # emerge --sync + # emerge --ask --oneshot --verbose ">=dev-db/sqlite-3.34.1" + + + + + CVE-2021-20227 + + whissi + whissi + -- cgit v1.2.3