SUSE update for sqlite3
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Buffer overflow
EUVDB-ID: #VU63627
Risk: Low
CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-36690
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service attack.
The vulnerability exists due to a segmentation fault in the sqlite3 command-line component when processing SQL queries in the idxGetTableInfo() function. A local user can pass a specially crafted SQL query and crash the application.
MitigationUpdate the affected package sqlite3 to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro: 5.3
SUSE Enterprise Storage: 6 - 7.1
SUSE Manager Server: 4.1
SUSE Manager Retail Branch Server: 4.1
SUSE Manager Proxy: 4.1
SUSE Linux Enterprise Server for SAP: 15-SP1 - 15-SP2
SUSE Linux Enterprise Server: 15-LTSS - 15-SP2-LTSS
SUSE Linux Enterprise High Performance Computing: 15-ESPOS - 15-SP2-LTSS
SUSE CaaS Platform: 4.0
sqlite3-tcl: before 3.39.3-150000.3.17.1
libsqlite3-0-32bit-debuginfo: before 3.39.3-150000.3.17.1
libsqlite3-0-32bit: before 3.39.3-150000.3.17.1
sqlite3-devel: before 3.39.3-150000.3.17.1
sqlite3: before 3.39.3-150000.3.17.1
sqlite3-debugsource: before 3.39.3-150000.3.17.1
sqlite3-debuginfo: before 3.39.3-150000.3.17.1
libsqlite3-0-debuginfo: before 3.39.3-150000.3.17.1
libsqlite3-0: before 3.39.3-150000.3.17.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20223307-2/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Improper Validation of Array Index
EUVDB-ID: #VU67414
Risk: Medium
CVSSv3.1: 6.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C]
CVE-ID: CVE-2022-35737
CWE-ID:
CWE-129 - Improper Validation of Array Index
Exploit availability: Yes
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a boundary error when handling an overly large input passed as argument to a C API. A remote attacker can pass specially crafted input to the application and perform a denial of service (DoS) attack.
Update the affected package sqlite3 to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro: 5.3
SUSE Enterprise Storage: 6 - 7.1
SUSE Manager Server: 4.1
SUSE Manager Retail Branch Server: 4.1
SUSE Manager Proxy: 4.1
SUSE Linux Enterprise Server for SAP: 15-SP1 - 15-SP2
SUSE Linux Enterprise Server: 15-LTSS - 15-SP2-LTSS
SUSE Linux Enterprise High Performance Computing: 15-ESPOS - 15-SP2-LTSS
SUSE CaaS Platform: 4.0
sqlite3-tcl: before 3.39.3-150000.3.17.1
libsqlite3-0-32bit-debuginfo: before 3.39.3-150000.3.17.1
libsqlite3-0-32bit: before 3.39.3-150000.3.17.1
sqlite3-devel: before 3.39.3-150000.3.17.1
sqlite3: before 3.39.3-150000.3.17.1
sqlite3-debugsource: before 3.39.3-150000.3.17.1
sqlite3-debuginfo: before 3.39.3-150000.3.17.1
libsqlite3-0-debuginfo: before 3.39.3-150000.3.17.1
libsqlite3-0: before 3.39.3-150000.3.17.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20223307-2/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
