CVE-2022-35737

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-35737

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-35737.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-35737

Aliases

Downstream

ALPINE-CVE-2022-35737

BELL-CVE-2022-35737

DEBIAN-CVE-2022-35737

OESA-2022-1909

RHSA-2023:0110

RHSA-2023:0339

RHSA-2024:0425

RLSA-2023:0110

RLSA-2023:0339

SUSE-SU-2022:3307-1

SUSE-SU-2022:3307-2

SUSE-SU-2022:3401-1

UBUNTU-CVE-2022-35737

USN-5712-1

USN-5716-1

USN-5716-2

openSUSE-SU-2024:12210-1

Related

Published

2022-08-03T06:15:07.690Z

Modified

2026-03-14T22:48:01.878743Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API.

References

Affected packages

Git / github.com/sqlite/sqlite

Affected ranges

Type

GIT

Repo

https://github.com/sqlite/sqlite

Events

Introduced

58c2976fa93c4217de777fd78bef91c861656487

Fixed

202b2a7b54ea2dd13a8a5adfd75523abe4dcf17f

Database specific

{
    "versions": [
        {
            "introduced": "1.0.12"
        },
        {
            "fixed": "3.39.2"
        }
    ]
}

Affected versions

Other

cvs-to-fossil-cutover

experimental

fts3-refactor

same-as-3.*

same-as-3.35.3

version-1.*

version-1.0.12

version-1.0.13

version-1.0.14

version-1.0.15

version-1.0.16

version-1.0.17

version-1.0.18

version-1.0.19

version-1.0.20

version-1.0.21

version-1.0.22

version-1.0.23

version-1.0.24

version-1.0.25

version-1.0.26

version-1.0.27

version-1.0.28

version-1.0.29

version-1.0.30

version-1.0.31

version-1.0.32

version-2.*

version-2.0.0

version-2.0.1

version-2.0.2

version-2.0.3

version-2.0.4

version-2.0.5

version-2.0.6

version-2.0.7

version-2.0.8

version-2.1.0

version-2.1.1

version-2.1.2

version-2.1.3

version-2.1.4

version-2.1.5

version-2.1.6

version-2.1.7

version-2.2.0

version-2.2.1

version-2.2.2

version-2.2.3

version-2.2.4

version-2.2.5

version-2.3.0

version-2.3.1

version-2.3.2

version-2.3.3

version-2.4.0

version-2.4.1

version-2.4.10

version-2.4.11

version-2.4.12

version-2.4.2

version-2.4.3

version-2.4.4

version-2.4.5

version-2.4.6

version-2.4.7

version-2.4.8

version-2.4.9

version-2.5.0

version-2.5.1

version-2.5.2

version-2.5.3

version-2.5.4

version-2.5.5

version-2.5.6

version-2.6.0

version-2.6.1

version-2.6.2

version-2.6.3

version-2.7.0

version-2.7.1

version-2.7.2

version-2.7.3

version-2.7.4

version-2.7.5

version-2.7.6

version-2.8.0

version-2.8.1

version-2.8.10

version-2.8.11

version-2.8.12

version-2.8.13

version-2.8.2

version-2.8.3

version-2.8.4

version-2.8.5

version-2.8.6

version-2.8.7

version-2.8.8

version-2.8.9

version-3.*

version-3.0.0

version-3.0.1

version-3.0.2

version-3.0.3

version-3.0.4

version-3.0.5

version-3.0.6

version-3.0.7

version-3.0.8

version-3.1.0

version-3.1.1

version-3.1.2

version-3.1.3

version-3.1.3.1

version-3.1.4

version-3.1.5

version-3.1.6

version-3.10.0

version-3.11.0

version-3.11.1

version-3.12.0

version-3.13.0

version-3.14.0

version-3.15.0

version-3.16.0

version-3.19.0

version-3.19.1

version-3.19.2

version-3.2.0

version-3.2.1

version-3.2.2

version-3.2.3

version-3.2.4

version-3.2.5

version-3.2.6

version-3.2.7

version-3.21.0

version-3.22.0

version-3.23.0

version-3.23.1

version-3.24.0

version-3.25.0

version-3.26.0

version-3.27.0

version-3.28.0

version-3.29.0

version-3.3.0

version-3.3.1

version-3.3.10

version-3.3.11

version-3.3.12

version-3.3.13

version-3.3.14

version-3.3.15

version-3.3.16

version-3.3.17

version-3.3.2

version-3.3.3

version-3.3.4

version-3.3.5

version-3.3.6

version-3.3.7

version-3.3.8

version-3.3.9

version-3.30.0

version-3.31.0

version-3.31.1

version-3.32.0

version-3.32.1

version-3.33.0

version-3.34.0

version-3.35.0

version-3.35.1

version-3.35.2

version-3.36.0

version-3.37.0

version-3.38.0

version-3.39.0

version-3.39.1

version-3.4.0

version-3.4.1

version-3.4.2

version-3.5.0

version-3.5.1

version-3.5.2

version-3.5.3

version-3.5.4

version-3.5.5

version-3.5.6

version-3.5.7

version-3.5.8

version-3.5.9

version-3.6.0

version-3.6.1

version-3.6.10

version-3.6.11

version-3.6.12

version-3.6.13

version-3.6.14

version-3.6.15

version-3.6.16

version-3.6.17

version-3.6.18

version-3.6.19

version-3.6.2

version-3.6.20

version-3.6.21

version-3.6.22

version-3.6.23

version-3.6.3

version-3.6.4

version-3.6.5

version-3.6.6

version-3.6.7

version-3.6.8

version-3.6.9

version-3.7.0

version-3.7.1

version-3.7.10

version-3.7.11

version-3.7.12

version-3.7.12.1

version-3.7.13

version-3.7.14

version-3.7.15

version-3.7.16

version-3.7.16.1

version-3.7.16.2

version-3.7.17

version-3.7.2

version-3.7.3

version-3.7.4

version-3.7.5

version-3.7.6

version-3.7.6.1

version-3.7.7

version-3.7.8

version-3.7.9

version-3.8.0

version-3.8.1

version-3.8.10

version-3.8.10.1

version-3.8.11

version-3.8.11.1

version-3.8.2

version-3.8.3

version-3.8.4

version-3.8.4.1

version-3.8.5

version-3.8.6

version-3.8.7

version-3.8.7.1

version-3.8.8

version-3.8.9

version-3.9.0

version-3.9.1

Database specific

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "8.2.0"
            },
            {
                "fixed": "8.2.12"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "9.0.0"
            },
            {
                "fixed": "9.0.6"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "9.1.0"
            }
        ]
    }
]

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-35737.json"