NULL pointer dereference in SQLite

#VU18060 NULL pointer dereference in SQLite

Published: 2019-03-22

Vulnerability identifier: #VU18060

Vulnerability risk: Medium

CVSSv3.1: 4.3 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2019-9937

CWE-ID: CWE-476

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
SQLite
Server applications / Database software

Vendor: SQLite

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dreference error when processing interleaving reads and writes in a single transaction with an fts5 virtual table in fts5ChunkIterate in sqlite3.c. This is related to ext/fts5/fts5_hash.c and ext/fts5/fts5_index.c. A remote attacker can perform a denial of service (DoS) attack.

Mitigation
Install update from vendor's website.

Vulnerable software versions

SQLite: 1.1.0 - 3.27.1

External links
http://sqlite.org/src/info/45c73deb440496e8
http://www.mail-archive.com/sqlite-users@mailinglists.sqlite.org/msg114383.html
http://www.mail-archive.com/sqlite-users@mailinglists.sqlite.org/msg114393.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Dell Container Storage Modules

Multiple vulnerabilities in Autodesk InfraWorks

Multiple vulnerabilities in Dell EMC Cyber Recovery

Gentoo update for SQLite

Ubuntu update for SQLite

OpenSUSE Linux update for sqlite3

Multiple vulnerabilities in SQLite