Description
In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner."
Remediation
References
Related Vulnerabilities
WordPress Plugin The Piecemaker 'php.php' Arbitrary File Upload (1.1)
Oracle JRE CVE-2013-1478 Vulnerability (CVE-2013-1478)
WordPress Plugin WP Advanced Importer Cross-Site Scripting (2.1.1)
MySQL CVE-2017-3464 Vulnerability (CVE-2017-3464)
WordPress 4.9.x Arbitrary File Deletion Vulnerability (4.9 - 4.9.6)