CVE-2019-19880

high-risk

Published 2019-12-18

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled.

Do I need to act?

8.4% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.5/10 High

NETWORK / LOW complexity

Affected Products (12)

Sqlite

Cloud Backup

Debian Linux

Package Hub

Enterprise Linux Desktop

Enterprise Linux Server

Enterprise Linux Workstation

Backports Sle

Leap

Mysql Workbench

Sinec Infrastructure Network Services

Affected Vendors

Debian Redhat Suse Oracle Siemens Netapp Opensuse Sqlite

References (20)

Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00010.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00015.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00025.html

Third Party Advisory https://access.redhat.com/errata/RHSA-2020:0514

Patch https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf

Patch https://github.com/sqlite/sqlite/commit/75e95e1fcd52d3ec8282edb75ac8cd0814095d54

Third Party Advisory https://security.netapp.com/advisory/ntap-20200114-0001/

Broken Link https://usn.ubuntu.com/4298-1/

Third Party Advisory https://www.debian.org/security/2020/dsa-4638

Patch https://www.oracle.com/security-alerts/cpuapr2020.html