PT-2020-5472 · Sqlite+5 · Sqlite+5

Published

2020-04-09

Updated

2024-03-06

CVE-2020-11655

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions SQLite versions through 3.31.1

Description The issue allows attackers to cause a denial of service, resulting in a segmentation fault, via a malformed window-function query. This is due to the mishandling of the AggInfo object's initialization. The vulnerability is related to a lack of input validation in the resetAccumulator function from src/select.c, which can be exploited by a remote attacker to cause a denial of service.

Recommendations For versions through 3.31.1, consider disabling the use of window-function queries until a patch is available. As a temporary workaround, restrict the input to the resetAccumulator function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Improper Initialization

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-665CWE-20

Related Identifiers

ALT-PU-2020-1981

ALT-PU-2020-2004

ALT-PU-2020-2898

ALT-PU-2021-1338

ALT-PU-2021-1906

ALT-PU-2021-2380

ALT-PU-2021-2382

ALT-PU-2021-3668

ALT-PU-2021-3670

AZL-39034

BDU:2021-00758

BIT-SQLITE-2020-11655

CVE-2020-11655

DLA-2203-1

DLA-2340-1

FREEBSD-SA-20_22

MGASA-2021-0303

USN-4394-1

Affected Products

Alt Linux

Astra Linux

Freebsd

Linuxmint

Sqlite

Ubuntu

PT-2020-5472 · Sqlite+5 · Sqlite+5

CVE-2020-11655

Weakness Enumeration

Related Identifiers

Affected Products

References · 66