CVE-2021-36690 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Low
Remote	No
Type	Denial of service
Description	DISPUTED A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL query. NOTE: the vendor disputes the relevance of this report because a user of the sqlite3 executable already has full privileges (e.g., is intentionally allowed to execute commands). This report does NOT imply any problem in the SQLite library.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-2319	lib32-sqlite	3.36.0-1	3.37.0-1	Low	Fixed
AVG-2318	sqlite	3.36.0-1	3.37.0-1	Low	Fixed

References
https://www.sqlite.org/forum/forumpost/718c0a8d17 https://sqlite.org/src/info/b1e0c22ec981cf5f8a6597abc6711b1a25019dd51de31129fbc504d3dc743bb4