[3.6] sqlite: NULL pointer dereference in tableColumnList (CVE-2017-15286)
SQLite 3.20.1 has a NULL pointer dereference in tableColumnList in shell.c because it fails to consider certain cases where `sqlite3_step(pStmt)==SQLITE_ROW` is false and a data structure is never initialized. An attacker might use this for a denial of service.
Fixed in:
3.21.0
References:
https://github.com/Ha0Team/crash-of-sqlite3/blob/master/poc.md
Patch:
http://www.sqlite.org/src/info/5d0ceb8dcdef92cd
(from redmine: issue id 8545, created on 2018-02-22, closed on 2018-02-23)
- Relations:
- parent #8544 (closed)
- Changesets:
- Revision d0e6ab95 by Natanael Copa on 2018-02-22T22:17:21Z:
main/sqlite: security fix for CVE-2017-15286
fixes #8545