SQLite through 3.31.1 allows attackers to cause a denial of service (segmentation fault) via a malformed window-function query because the AggInfo object's initialization is mishandled.
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "libsqlite3-tcl-dbgsym": "3.31.1-4ubuntu0.1", "lemon-dbgsym": "3.31.1-4ubuntu0.1", "libsqlite3-0-dbgsym": "3.31.1-4ubuntu0.1", "sqlite3-dbgsym": "3.31.1-4ubuntu0.1", "libsqlite3-tcl": "3.31.1-4ubuntu0.1", "libsqlite3-0": "3.31.1-4ubuntu0.1", "libsqlite3-dev": "3.31.1-4ubuntu0.1", "sqlite3-doc": "3.31.1-4ubuntu0.1", "sqlite3": "3.31.1-4ubuntu0.1", "lemon": "3.31.1-4ubuntu0.1" } ] }