drh

14 exploits Active since Nov 2019
CVE-2019-19317 WRITEUP CRITICAL WRITEUP
SQLite 3.30.1 - Denial of Service via Generated Column Bitmask Handling
lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service or possibly have unspecified other impact.
CVSS 9.8
CVE-2019-19646 WRITEUP CRITICAL WRITEUP
SQLite < 3.30.1 - Denial of Service via Integrity Check PRAGMA with Generated Columns
pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns.
CVSS 9.8
CVE-2019-19959 WRITEUP HIGH WRITEUP
SQLite 3.30.1 - Memory Management Error via Embedded Null Characters in Filenames
ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT INTO in situations involving embedded '\0' characters in filenames, leading to a memory-management error that can be detected by (for example) valgrind.
CVSS 7.5
CVE-2019-19242 WRITEUP MEDIUM WRITEUP
SQLite 3.30.1 - NULL Pointer Dereference in expr.c
SQLite 3.30.1 mishandles pExpr->y.pTab, as demonstrated by the TK_COLUMN case in sqlite3ExprCodeTarget in expr.c.
CVSS 5.9
CVE-2019-19317 WRITEUP CRITICAL WRITEUP
SQLite 3.30.1 - Denial of Service via Generated Column Bitmask Handling
lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service or possibly have unspecified other impact.
CVSS 9.8
CVE-2019-19603 WRITEUP HIGH WRITEUP
SQLite 3.30.1 - Denial of Service via SELECT with Nonexistent VIEW
SQLite 3.30.1 mishandles certain SELECT statements with a nonexistent VIEW, leading to an application crash.
CVSS 7.5
CVE-2019-19646 WRITEUP CRITICAL WRITEUP
SQLite < 3.30.1 - Denial of Service via Integrity Check PRAGMA with Generated Columns
pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns.
CVSS 9.8
CVE-2019-19880 WRITEUP HIGH WRITEUP
SQLite 3.30.1 - NULL Pointer Dereference in Window Function ORDER BY Clause
exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled.
CVSS 7.5
CVE-2019-19923 WRITEUP HIGH WRITEUP
SQLite 3.30.1 - NULL Pointer Dereference in flattenSubquery
flattenSubquery in select.c in SQLite 3.30.1 mishandles certain uses of SELECT DISTINCT involving a LEFT JOIN in which the right-hand side is a view. This can cause a NULL pointer dereference (or incorrect results).
CVSS 7.5
CVE-2019-19924 WRITEUP MEDIUM WRITEUP
SQLite 3.30.1 - Denial of Service via Incorrect Parser-Tree Rewriting
SQLite 3.30.1 mishandles certain parser-tree rewriting, related to expr.c, vdbeaux.c, and window.c. This is caused by incorrect sqlite3WindowRewrite() error handling.
CVSS 5.3
CVE-2019-19925 WRITEUP HIGH WRITEUP
SQLite 3.30.1 - Unrestricted Upload of File with Dangerous Type via zipfileUpdate
zipfileUpdate in ext/misc/zipfile.c in SQLite 3.30.1 mishandles a NULL pathname during an update of a ZIP archive.
CVSS 7.5
CVE-2019-19926 WRITEUP HIGH WRITEUP
SQLite 3.30.1 - NULL Pointer Dereference in select.c multiSelect
multiSelect in select.c in SQLite 3.30.1 mishandles certain errors during parsing, as demonstrated by errors from sqlite3WindowRewrite() calls. NOTE: this vulnerability exists because of an incomplete fix for CVE-2019-19880.
CVSS 7.5
CVE-2019-19959 WRITEUP HIGH WRITEUP
SQLite 3.30.1 - Memory Management Error via Embedded Null Characters in Filenames
ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT INTO in situations involving embedded '\0' characters in filenames, leading to a memory-management error that can be detected by (for example) valgrind.
CVSS 7.5
CVE-2025-29088 WRITEUP MEDIUM WRITEUP
SQLite 3.49.0 - Denial of Service via sqlite3_db_config Integer Overflow
In SQLite 3.49.0 before 3.49.1, certain argument values to sqlite3_db_config (in the C-language API) can cause a denial of service (application crash). An sz*nBig multiplication is not cast to a 64-bit integer, and consequently some memory allocations may be incorrect.
CVSS 5.6