MGASA-2016-0255

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2016-0255.html

Import Source

https://advisories.mageia.org/MGASA-2016-0255.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2016-0255

Related

CVE-2016-6153

Published

2016-07-14T20:33:59Z

Modified

2016-07-14T20:26:48Z

Summary

Updated sqlite3 packages fix security vulnerability

Details

It was discovered that sqlite3 would reject a temporary directory (e.g., as specified by the TMPDIR environment variable) to which the executing user did not have read permissions. This could result in information leakage as less secure global temporary directories (e.g., /var/tmp or /tmp) would be used instead (CVE-2016-6153).

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:5 / sqlite3

Package

Name: sqlite3
Purl: pkg:rpm/mageia/sqlite3?distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.8.10.2-1.2.mga5

Ecosystem specific

{
    "section": "core"
}