Description
sqlite3Select in select.c in SQLite 3.30.1 allows a crash if a sub-select uses both DISTINCT and window functions, and also has certain ORDER BY usage.
Remediation
References
Related Vulnerabilities
Envoy Proxy Improper Input Validation Vulnerability (CVE-2019-9900)
MediaWiki Use of Insufficiently Random Values Vulnerability (CVE-2023-22912)
MediaWiki Insufficiently Protected Credentials Vulnerability (CVE-2020-29005)
WordPress Plugin WP Super Cache Cross-Site Scripting (1.7.2)
MediaWiki Incorrect Default Permissions Vulnerability (CVE-2017-0369)