Description
In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner."
Remediation
References
Related Vulnerabilities
Magento CVE-2020-9631 Vulnerability (CVE-2020-9631)
Envoy Proxy Origin Validation Error Vulnerability (CVE-2020-15104)
WordPress Plugin Hana Flv Player Cross-Site Scripting (3.1.3)
Oracle Database Server CVE-2010-0911 Vulnerability (CVE-2010-0911)
WordPress Plugin Accept Donations with PayPal Cross-Site Scripting (1.3.1)