vulnerability

Oracle Linux: CVE-2020-13631: ELSA-2020-4442: sqlite security update (MODERATE) (Multiple Advisories)

Severity
5
CVSS
(AV:L/AC:L/Au:S/C:N/I:C/A:N)
Published
May 14, 2020
Added
Nov 12, 2020
Modified
Jan 23, 2025

Description

SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c.
A flaw was found in the virtual table implementation of SQLite. This flaw allows an attacker who can execute SQL statements to rename a virtual table to the name of one of its shadow tables, leading to potential data corruption.

Solution(s)

oracle-linux-upgrade-lemonoracle-linux-upgrade-sqliteoracle-linux-upgrade-sqlite-develoracle-linux-upgrade-sqlite-docoracle-linux-upgrade-sqlite-libs
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.