2017-10-16 12:31:07 -04:00
{
2019-03-18 02:18:24 +00:00
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org" ,
"ID" : "CVE-2017-10989" ,
"STATE" : "PUBLIC"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a" ,
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
} ,
"vendor_name" : "n/a"
}
]
}
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
2018-07-17 14:12:59 -07:00
{
2019-03-18 02:18:24 +00:00
"lang" : "eng" ,
"value" : "The getNodeSize function in ext/rtree/rtree.c in SQLite through 3.19.3, as used in GDAL and other products, mishandles undersized RTree blobs in a crafted database, leading to a heap-based buffer over-read or possibly unspecified other impact."
2018-07-17 14:12:59 -07:00
}
2019-03-18 02:18:24 +00:00
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "n/a"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
"name" : "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html" ,
"refsource" : "CONFIRM" ,
"url" : "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html"
} ,
{
"name" : "https://support.apple.com/HT208144" ,
"refsource" : "CONFIRM" ,
"url" : "https://support.apple.com/HT208144"
} ,
{
"name" : "[debian-lts-announce] 20190111 [SECURITY] [DLA 1633-1] sqlite3 security update" ,
"refsource" : "MLIST" ,
"url" : "https://lists.debian.org/debian-lts-announce/2019/01/msg00009.html"
} ,
{
"name" : "https://sqlite.org/src/vpatch?from=0db20efe201736b3&to=66de6f4a9504ec26" ,
"refsource" : "MISC" ,
"url" : "https://sqlite.org/src/vpatch?from=0db20efe201736b3&to=66de6f4a9504ec26"
} ,
{
"name" : "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2405" ,
"refsource" : "MISC" ,
"url" : "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2405"
} ,
{
"name" : "https://sqlite.org/src/info/66de6f4a" ,
"refsource" : "MISC" ,
"url" : "https://sqlite.org/src/info/66de6f4a"
} ,
{
"name" : "1039427" ,
"refsource" : "SECTRACK" ,
"url" : "http://www.securitytracker.com/id/1039427"
} ,
{
"name" : "https://bugs.launchpad.net/ubuntu/+source/sqlite3/+bug/1700937" ,
"refsource" : "MISC" ,
"url" : "https://bugs.launchpad.net/ubuntu/+source/sqlite3/+bug/1700937"
} ,
{
"name" : "https://support.apple.com/HT208113" ,
"refsource" : "CONFIRM" ,
"url" : "https://support.apple.com/HT208113"
} ,
{
"name" : "https://support.apple.com/HT208112" ,
"refsource" : "CONFIRM" ,
"url" : "https://support.apple.com/HT208112"
} ,
{
"name" : "http://marc.info/?l=sqlite-users&m=149933696214713&w=2" ,
"refsource" : "MISC" ,
"url" : "http://marc.info/?l=sqlite-users&m=149933696214713&w=2"
} ,
{
"name" : "https://support.apple.com/HT208115" ,
"refsource" : "CONFIRM" ,
"url" : "https://support.apple.com/HT208115"
} ,
{
"name" : "99502" ,
"refsource" : "BID" ,
"url" : "http://www.securityfocus.com/bid/99502"
2019-05-22 03:00:50 +00:00
} ,
{
"refsource" : "SUSE" ,
"name" : "openSUSE-SU-2019:1426" ,
"url" : "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00050.html"
2019-06-19 19:00:46 +00:00
} ,
{
"refsource" : "UBUNTU" ,
"name" : "USN-4019-1" ,
"url" : "https://usn.ubuntu.com/4019-1/"
2019-06-19 20:00:46 +00:00
} ,
{
"refsource" : "UBUNTU" ,
"name" : "USN-4019-2" ,
"url" : "https://usn.ubuntu.com/4019-2/"
2019-03-18 02:18:24 +00:00
}
]
}
}
