UBUNTU-CVE-2018-20346
See a problem?- Source
- https://ubuntu.com/security/notices/UBUNTU-CVE-2018-20346
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2018/UBUNTU-CVE-2018-20346.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2018-20346
- Related
- Published
- 2018-12-21T00:00:00Z
- Modified
- 2018-12-21T00:00:00Z
- Severity
-
- 8.1 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries that occur after crafted changes to FTS3 shadow tables, allowing remote attackers to execute arbitrary code by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use cases), aka Magellan.
- References
-
- https://ubuntu.com/security/CVE-2018-20346
- https://blade.tencent.com/magellan/index_en.html
- https://www.mail-archive.com/sqlite-users@mailinglists.sqlite.org/msg113218.html
- https://access.redhat.com/articles/3758321
- https://bugzilla.redhat.com/show_bug.cgi?id=1659379
- https://bugzilla.redhat.com/show_bug.cgi?id=1659677
- https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html
- https://chromium.googlesource.com/chromium/src/+/c368e30ae55600a1c3c9cb1710a54f9c55de786e
- https://crbug.com/900910
- https://github.com/zhuowei/worthdoingbadly.com/blob/master/_posts/2018-12-14-sqlitebug.html
- https://lists.debian.org/debian-lts-announce/2018/12/msg00012.html
- https://news.ycombinator.com/item?id=18685296
- https://sqlite.org/src/info/940f2adc8541a838
- https://sqlite.org/src/info/d44318f59044162e
- https://worthdoingbadly.com/sqlitebug/
- https://www.sqlite.org/releaselog/3_25_3.html
- https://ubuntu.com/security/notices/USN-4019-1
- https://ubuntu.com/security/notices/USN-4019-2
- https://www.cve.org/CVERecord?id=CVE-2018-20346
Affected packages
Ubuntu:Pro:14.04:LTS / sqlite3
Package
- Name
- sqlite3
- Purl
- pkg:deb/ubuntu/sqlite3@3.8.2-1ubuntu2.2+esm1?arch=src?distro=trusty/esm
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.8.2-1ubuntu2.2+esm1
Affected versions
3.*
3.7.17-1ubuntu1
3.8.0.2-1ubuntu1
3.8.1-1ubuntu1
3.8.1-1ubuntu3
3.8.2-1ubuntu1
3.8.2-1ubuntu2
3.8.2-1ubuntu2.1
3.8.2-1ubuntu2.2
Ecosystem specific
{
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"ubuntu_priority": "medium",
"binaries": [
{
"libsqlite3-tcl-dbgsym": "3.8.2-1ubuntu2.2+esm1",
"lemon-dbgsym": "3.8.2-1ubuntu2.2+esm1",
"libsqlite3-0-dbg": "3.8.2-1ubuntu2.2+esm1",
"libsqlite3-0-dbgsym": "3.8.2-1ubuntu2.2+esm1",
"sqlite3-dbgsym": "3.8.2-1ubuntu2.2+esm1",
"libsqlite3-tcl": "3.8.2-1ubuntu2.2+esm1",
"libsqlite3-dev-dbgsym": "3.8.2-1ubuntu2.2+esm1",
"libsqlite3-0": "3.8.2-1ubuntu2.2+esm1",
"libsqlite3-dev": "3.8.2-1ubuntu2.2+esm1",
"sqlite3-doc": "3.8.2-1ubuntu2.2+esm1",
"sqlite3": "3.8.2-1ubuntu2.2+esm1",
"lemon": "3.8.2-1ubuntu2.2+esm1"
}
]
}
Ubuntu:16.04:LTS / sqlite3
Package
- Name
- sqlite3
- Purl
- pkg:deb/ubuntu/sqlite3@3.11.0-1ubuntu1.2?arch=src?distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.11.0-1ubuntu1.2
Affected versions
3.*
3.8.11.1-1
3.9.1-2
3.9.2-1
3.10.0-1
3.10.1-1
3.10.2-1
3.11.0-1ubuntu1
3.11.0-1ubuntu1.1
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"libsqlite3-tcl-dbgsym": "3.11.0-1ubuntu1.2",
"lemon-dbgsym": "3.11.0-1ubuntu1.2",
"libsqlite3-0-dbg": "3.11.0-1ubuntu1.2",
"libsqlite3-0-dbgsym": "3.11.0-1ubuntu1.2",
"sqlite3-dbgsym": "3.11.0-1ubuntu1.2",
"libsqlite3-tcl": "3.11.0-1ubuntu1.2",
"libsqlite3-dev-dbgsym": "3.11.0-1ubuntu1.2",
"libsqlite3-0": "3.11.0-1ubuntu1.2",
"libsqlite3-dev": "3.11.0-1ubuntu1.2",
"sqlite3-doc": "3.11.0-1ubuntu1.2",
"sqlite3": "3.11.0-1ubuntu1.2",
"lemon": "3.11.0-1ubuntu1.2"
}
]
}
Ubuntu:18.04:LTS / sqlite3
Package
- Name
- sqlite3
- Purl
- pkg:deb/ubuntu/sqlite3@3.22.0-1ubuntu0.1?arch=src?distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.22.0-1ubuntu0.1
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"libsqlite3-tcl-dbgsym": "3.22.0-1ubuntu0.1",
"lemon-dbgsym": "3.22.0-1ubuntu0.1",
"libsqlite3-0-dbgsym": "3.22.0-1ubuntu0.1",
"sqlite3-dbgsym": "3.22.0-1ubuntu0.1",
"libsqlite3-tcl": "3.22.0-1ubuntu0.1",
"libsqlite3-0": "3.22.0-1ubuntu0.1",
"libsqlite3-dev": "3.22.0-1ubuntu0.1",
"sqlite3-doc": "3.22.0-1ubuntu0.1",
"sqlite3": "3.22.0-1ubuntu0.1",
"lemon": "3.22.0-1ubuntu0.1"
}
]
}