Format: 1.8 Date: Fri, 14 Jun 2019 15:02:21 -0300 Source: sqlite3 Binary: lemon sqlite3 sqlite3-doc libsqlite3-0 libsqlite3-dev libsqlite3-tcl Architecture: amd64 all Version: 3.22.0-1ubuntu0.1 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Leonidas S. Barbosa Description: lemon - LALR(1) Parser Generator for C or C++ libsqlite3-0 - SQLite 3 shared library libsqlite3-dev - SQLite 3 development files libsqlite3-tcl - SQLite 3 Tcl bindings sqlite3 - Command line interface for SQLite 3 sqlite3-doc - SQLite 3 documentation Changes: sqlite3 (3.22.0-1ubuntu0.1) bionic-security; urgency=medium . * SECURITY UPDATE: Integer overflow - debian/patches/CVE-2018-20346-and-CVE-2018-20506.patch: add extra defenses against strategically corrupt databases in ext/fts3/fst3.c, ext/fts3/fts3_write.c, test/fts3corrupt4.test, test/permutations.test. - CVE-2018-20346 - CVE-2018-20506 * SECURITY UPDATE: Denial of service - debian/patches/CVE-2018-20505.patch: remove assert which fail due to a malformed PK and add check in src/wherecode.c, test/rowvalue.test. - CVE-2018-20505 * SECURITY UPDATE: heap out-of-bound read - debian/patches/CVE-2019-8457.patch: enhance the rtreenode() in ext/rtree/rtree.c. - debian/patches/CVE-2019-8457-string-interface.patch: add string interface in src/btree.c, src/build.c, src/func.c, src/mutex.c, src/pragma.c, src/printf.c, src/sqlite.h.in, src/sqliteInt.h, src/treeview.c, src/vdbeaux.c, src/vdbetrace.c, src/wherecode.c. - CVE-2019-8457 * security update: heap-buffer over-read - debian/patches/cve-2019-9936.patch: add checks in code in order to fix in ext/fts5/fts5_hash.c, ext/fts5/test/fts5aa.test. - CVE-2019-9936 * security update: NULL pointer dereference - debian/patches/cve-2019-9937.patch: fix in ext/fts5/fts5Int.h, ext/fts5/fts5_hash.c, ext/fts5/fts5_index.c, ext/fts5/test/fts5aa.test. - CVE-2019-9937 Checksums-Sha1: 91432f81a49f1c7d1210dad305671865d3dcd270 62148 lemon-dbgsym_3.22.0-1ubuntu0.1_amd64.ddeb d3ed1d0a58bc90cab5277f09603aaab7621d6835 55752 lemon_3.22.0-1ubuntu0.1_amd64.deb 01c61612cb67ee55ba9b36acde27ec48e9c670c4 1376824 libsqlite3-0-dbgsym_3.22.0-1ubuntu0.1_amd64.ddeb dcac55788e94e1d0b02d71250be2e166ce75d061 497428 libsqlite3-0_3.22.0-1ubuntu0.1_amd64.deb 1ab315aa27584d5a4e88aedab2c0d597b8d9ca72 632508 libsqlite3-dev_3.22.0-1ubuntu0.1_amd64.deb 76b7b909acddf6a17782ba45f74772c9a7027797 56220 libsqlite3-tcl-dbgsym_3.22.0-1ubuntu0.1_amd64.ddeb 24b5983f0ca0e3543c98eec0f237f366058f1f00 20948 libsqlite3-tcl_3.22.0-1ubuntu0.1_amd64.deb 89bddd5a254aae83a1623dd3ac4cc709d13dc23c 2996692 sqlite3-dbgsym_3.22.0-1ubuntu0.1_amd64.ddeb 1df0de75725adba5873c83859ed1027e154d1726 3593108 sqlite3-doc_3.22.0-1ubuntu0.1_all.deb 62aa4d73220b59ee7f69830de9f181e787ddec79 8079 sqlite3_3.22.0-1ubuntu0.1_amd64.buildinfo 601345feeb1fc3e3af45feaa76b65fb4f027a0b4 752884 sqlite3_3.22.0-1ubuntu0.1_amd64.deb Checksums-Sha256: ea1f4e51ee8fe125485dd71ac286ab9eb6e6d25e7064abe3758090b8fe876330 62148 lemon-dbgsym_3.22.0-1ubuntu0.1_amd64.ddeb 581146d5ed8371ed676d2daa300dac3ea88662d025e23cc5a63fba22023c73c5 55752 lemon_3.22.0-1ubuntu0.1_amd64.deb da2beaeb46e0d6524ff3085457d7fc412da1c4fe76f920b6302818dd6d3561ce 1376824 libsqlite3-0-dbgsym_3.22.0-1ubuntu0.1_amd64.ddeb 199fbe096ee359eaf16e7e23871a1aa508bf055df0010c7c4321398f9484a220 497428 libsqlite3-0_3.22.0-1ubuntu0.1_amd64.deb 058ed4967b97fa4ee9a154df420cb839db10bc9e96fb837c6dc4bc66180088f4 632508 libsqlite3-dev_3.22.0-1ubuntu0.1_amd64.deb aa8d3ead298a0b9be57c84de8b167cc80b036e932eb94afd4ebf5a2474092e22 56220 libsqlite3-tcl-dbgsym_3.22.0-1ubuntu0.1_amd64.ddeb e3832a0f67efef264b9d177757d7c3335364e17f79323f4c5e7c342112c82eb0 20948 libsqlite3-tcl_3.22.0-1ubuntu0.1_amd64.deb ebca765f3ac69c9c14c2e15d6fba8292b0dcd4981223febad62d884ac4d34c56 2996692 sqlite3-dbgsym_3.22.0-1ubuntu0.1_amd64.ddeb 76b12dd7bc3b0ce1aca04d23514f5a31e695da363df3c6a03297a4e32d308c45 3593108 sqlite3-doc_3.22.0-1ubuntu0.1_all.deb 83f7aa9535128a5e33fb131d46a533d4ec6d3164c5177d2b0a9786c89602b9b8 8079 sqlite3_3.22.0-1ubuntu0.1_amd64.buildinfo 7ed2926d2c651f6068f2fed2f96660ed7d81dd76863bd5c6324b87f3a1f826dd 752884 sqlite3_3.22.0-1ubuntu0.1_amd64.deb Files: ab5ab124f18d1aaa31cab2e72bdbdcc2 62148 debug optional lemon-dbgsym_3.22.0-1ubuntu0.1_amd64.ddeb 3578e282342d1410f408027e6e4ffebe 55752 devel optional lemon_3.22.0-1ubuntu0.1_amd64.deb 5167de6432a47fececb437f9fac6d0a5 1376824 debug optional libsqlite3-0-dbgsym_3.22.0-1ubuntu0.1_amd64.ddeb 52710d2983478f48a896da7c9fff2468 497428 libs standard libsqlite3-0_3.22.0-1ubuntu0.1_amd64.deb a266ac1eca916504ed7dc9acdf0945ed 632508 libdevel optional libsqlite3-dev_3.22.0-1ubuntu0.1_amd64.deb 6f8b7f90020cda032375a8b30f524b4e 56220 debug optional libsqlite3-tcl-dbgsym_3.22.0-1ubuntu0.1_amd64.ddeb 85086dee3e31e3e205dbb7a97b21bee4 20948 interpreters optional libsqlite3-tcl_3.22.0-1ubuntu0.1_amd64.deb 46d1209ecbc7236d108162bbac97263c 2996692 debug optional sqlite3-dbgsym_3.22.0-1ubuntu0.1_amd64.ddeb 005a953fc234dee3cbd69d380ebfd5d4 3593108 doc optional sqlite3-doc_3.22.0-1ubuntu0.1_all.deb 9a94587dec7816d3a92afaa5165611af 8079 devel optional sqlite3_3.22.0-1ubuntu0.1_amd64.buildinfo 18406992dcec4cf50b2aeb43b6df618b 752884 database optional sqlite3_3.22.0-1ubuntu0.1_amd64.deb Original-Maintainer: Laszlo Boszormenyi (GCS)