Description
ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT INTO in situations involving embedded '\0' characters in filenames, leading to a memory-management error that can be detected by (for example) valgrind.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2010-0854 Vulnerability (CVE-2010-0854)
SharePoint CVE-2021-31171 Vulnerability (CVE-2021-31171)
XWiki Improper Neutralization of Alternate XSS Syntax Vulnerability (CVE-2023-35158)
Jboss EAP Reachable Assertion Vulnerability (CVE-2020-25710)
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-35614)