Description

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled.

Remediation

References

CVE-2019-19880

Related Vulnerabilities

WordPress Plugin Newsletters Multiple Vulnerabilities (4.6.5.3)

PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-3078)

WordPress Plugin Images Slideshow by 2J-Image Slider Unspecified Vulnerability (1.2.15)

MySQL CVE-2021-2293 Vulnerability (CVE-2021-2293)

WordPress Plugin GiveWP-Donation and Fundraising Platform Multiple Vulnerabilities (2.20.2)

Severity

High

Classification

CVE-2019-19880 CWE-476 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities