mirror of
https://git.yoctoproject.org/poky
synced 2026-03-06 15:29:40 +01:00
sqlite3: CVE-2018-8740
* CVE-2018-8740 In SQLite through 3.22.0, databases whose schema is corrupted using a CREATE TABLE AS statement could cause a NULL pointer dereference, related to build.c and prepare.c. Affects sqlite3 <= 3.22.0 CVE: CVE-2018-8740 Ref: https://access.redhat.com/security/cve/cve-2018-8740 (From OE-Core rev: 0469c075d904026ec37214fb39397bb1cb07ab43) Signed-off-by: Sinan Kaya <okaya@kernel.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This commit is contained in:
Sinan Kaya
committed by
Richard Purdie
Richard Purdie
parent
b77082e38f
commit
a36165011e
@@ -5,6 +5,7 @@ LIC_FILES_CHKSUM = "file://sqlite3.h;endline=11;md5=786d3dc581eff03f4fd9e4a77ed0
|
||||
|
||||
SRC_URI = "\
|
||||
http://www.sqlite.org/2018/sqlite-autoconf-${SQLITE_PV}.tar.gz \
|
||||
file://CVE-2018-8740.patch \
|
||||
"
|
||||
SRC_URI[md5sum] = "96b5648d542e8afa6ab7ffb8db8ddc3d"
|
||||
SRC_URI[sha256sum] = "2824ab1238b706bc66127320afbdffb096361130e23291f26928a027b885c612"
|
||||
|
||||
Reference in New Issue
Block a user