Description
In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation.
Remediation
References
Related Vulnerabilities
WordPress Plugin Jigoshop Multiple Unspecified Vulnerabilities (1.17.13)
WordPress Plugin WordPress Access Areas Security Bypass (1.3.0)
WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.5)
WordPress Plugin Pay Per Media Player Multiple Cross-Site Scripting Vulnerabilities (1.24)
WordPress Plugin Crelly Slider Multiple Unspecified Vulnerabilities (1.1.1)