| Max CVSS | 5.1 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-19925 | 5.0 |
zipfileUpdate in ext/misc/zipfile.c in SQLite 3.30.1 mishandles a NULL pathname during an update of a ZIP archive.
|
15-04-2022 - 16:19 | 24-12-2019 - 17:15 | |
| CVE-2019-19923 | 5.0 |
flattenSubquery in select.c in SQLite 3.30.1 mishandles certain uses of SELECT DISTINCT involving a LEFT JOIN in which the right-hand side is a view. This can cause a NULL pointer dereference (or incorrect results).
|
15-04-2022 - 16:18 | 24-12-2019 - 16:15 | |
| CVE-2019-19926 | 5.0 |
multiSelect in select.c in SQLite 3.30.1 mishandles certain errors during parsing, as demonstrated by errors from sqlite3WindowRewrite() calls. NOTE: this vulnerability exists because of an incomplete fix for CVE-2019-19880.
|
15-04-2022 - 16:17 | 23-12-2019 - 01:15 | |
| CVE-2019-19880 | 5.0 |
exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled.
|
15-04-2022 - 16:16 | 18-12-2019 - 06:15 | |
| CVE-2019-18197 | 5.1 |
In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances. If the relevant memory area happened to be freed and reused in a certain way, a bounds check could fail and memory outside a buffer could be
|
24-08-2020 - 17:37 | 18-10-2019 - 21:15 |