PT-2019-15808 · Sqlite+2 · Sqlite+2

Published

2019-12-05

Updated

2025-11-15

CVE-2019-19317

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SQLite version 3.30.1

Description The issue is related to the lookupName function in resolve.c, which incorrectly handles the colUsed bitmask for generated columns. This can lead to a denial of service or potentially other unspecified impacts.

Recommendations For SQLite version 3.30.1, consider updating to a newer version that addresses this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-681

Related Identifiers

ALT-PU-2020-1088

ALT-PU-2020-2094

ALT-PU-2020-2183

CVE-2019-19317

OPENSUSE-SU-2021:1058-1

OPENSUSE-SU-2021:2320-1

OPENSUSE-SU-2021_1058-1

OPENSUSE-SU-2021_2320-1

SUSE-SU-2021:2320-1

SUSE-SU-2021:3215-1

Affected Products

Alt Linux

Sqlite

Suse

PT-2019-15808 · Sqlite+2 · Sqlite+2

CVE-2019-19317

Weakness Enumeration

Related Identifiers

Affected Products

References · 64