Critical 9.8 Unfixed
2025-07-15≤ 3.19.4
Integer Truncation on SQLite
SQLite 3.19
Critical 9.8 Unfixed
2020-04-09≤ 3.19.4
sqlite: use-after-free in the ALTER TABLE implementation
Critical 9.8 Unfixed
2019-12-09≤ 3.19.4
sqlite: pragma.c mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns
Critical 9.8 Unfixed
2019-12-05≤ 3.19.4
sqlite: omits bits from the colUsed bitmask in the case of a generated column
Critical 9.8
2019-05-30≤ 3.19.4
sqlite: heap out-of-bound read in function rtreenode()
Critical 9.8
2017-07-07< 3.19.4
sqlite: Heap-buffer overflow in the getNodeSize function
High 8.1 Unfixed
2019-04-03≤ 3.19.4
sqlite: Multiple flaws in sqlite which can be triggered via corrupted internal databases (Magellan)
High 8.1 Unfixed
2018-12-21≤ 3.19.4
sqlite: Multiple flaws in sqlite which can be triggered via corrupted internal databases (Magellan)
High 7.5 Unfixed
2026-03-12≤ 3.19.4
sqlite: SQLite: Information Disclosure via Crafted ZIP File
High 7.5 Unfixed
2022-08-03≤ 3.19.4
sqlite: an array-bounds overflow if billions of bytes are used in a string argument to a C API
High 7.5 Unfixed
2020-06-06≤ 3.19.4
sqlite: use-after-free in resetAccumulator in select.c
High 7.5 Unfixed
2020-04-09≤ 3.19.4
sqlite: malformed window-function query leads to DoS
High 7.5 Unfixed
2020-02-21≤ 3.19.4
sqlite: NULL pointer dereference and segmentation fault because of generated column optimizations
High 7.5 Unfixed
2020-01-02≤ 3.19.4
sqlite: selectExpander in select.c proceeds with WITH stack unwinding even after a parsing error
High 7.5 Unfixed
2020-01-03≤ 3.19.4
sqlite: mishandles certain uses of INSERT INTO in situations involving embedded '\0' characters in filenames
High 7.5 Unfixed
2019-12-23≤ 3.19.4
sqlite: error mishandling because of incomplete fix of CVE-2019-19880
High 7.5 Unfixed
2019-12-24≤ 3.19.4
sqlite: zipfileUpdate in ext/misc/zipfile.c mishandles a NULL pathname during an update of a ZIP archive
High 7.5 Unfixed
2019-12-24≤ 3.19.4
sqlite: mishandling of certain uses of SELECT DISTINCT involving a LEFT JOIN in flattenSubquery in select.c leads to a NULL pointer dereference
High 7.5 Unfixed
2019-04-03≤ 3.19.4
sqlite: Multiple flaws in sqlite which can be triggered via corrupted internal databases (Magellan)
High 7.5 Unfixed
2017-10-12≤ 3.19.4
sqlite: NULL pointer dereference in tableColumnList
High 7.0 Unfixed
2020-05-27≤ 3.19.4
sqlite: Use-after-free in fts3EvalNextRow in ext/fts3/fts3.c
Medium 6.5 Unfixed
2019-09-09≤ 3.19.4
sqlite: Division by zero in whereLoopAddBtreeIndex in sqlite3.c
Medium 5.5 Unfixed
2023-12-25≤ 3.19.4
SQLite SQLite3 make alltest sqlite3session.c sessionReadRecord heap-based overflow
Medium 5.5 Unfixed
2021-03-23≤ 3.19.4
sqlite: potential use-after-free bug when processing a subquery with both a correlated WHERE clause and a "HAVING 0" clause and where the parent query is an aggregate
Medium 5.5 Unfixed
2020-06-27≤ 3.19.4
sqlite: heap-based buffer overflow in multiSelectOrderBy due to mishandling of query-flattener optimization in select.c
Medium 5.5 Unfixed
2020-05-27≤ 3.19.4
sqlite: NULL pointer dereference in ext/fts3/fts3_snippet.c via a crafted matchinfo() query
Medium 5.5 Unfixed
2020-05-27≤ 3.19.4
sqlite: Virtual table can be renamed into the name of one of its shadow tables
Medium 5.5 Unfixed
2020-05-24≤ 3.19.4
sqlite: NULL pointer dereference in sqlite3ExprCodeTarget()
Medium 5.5 Unfixed
2020-05-24≤ 3.19.4
sqlite: integer overflow in sqlite3_str_vappendf function in printf.c
Medium 5.5 Unfixed
2019-12-09≤ 3.19.4
sqlite: infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements
Medium 5.5 Unfixed
2017-08-29≤ 3.19.4
sqlite: Local DoS via dump_callback function
Medium 5.3 Unfixed
2019-12-24≤ 3.19.4
sqlite: incorrect sqlite3WindowRewrite() error handling leads to mishandling certain parser-tree rewriting
Medium 4.7 Unfixed
2024-01-16≤ 3.19.4
Sqlite: use-after-free bug in jsonparseaddnodearray
N/A Unfixed
0000-00-00≤ 3.19.4
N/A Unfixed
2020-02-11≤ 3.19.4