[3.5] sqlite: NULL pointer dereference in tableColumnList (CVE-2017-15286)
SQLite 3.20.1 has a NULL pointer dereference in tableColumnList in shell.c because it fails to consider certain cases where `sqlite3_step(pStmt)==SQLITE_ROW` is false and a data structure is never initialized. An attacker might use this for a denial of service.
Fixed in:
3.21.0
References:
https://github.com/Ha0Team/crash-of-sqlite3/blob/master/poc.md
Patch:
http://www.sqlite.org/src/info/5d0ceb8dcdef92cd
(from redmine: issue id 8546, created on 2018-02-22, closed on 2018-02-23)
- Relations:
- copied_to #8547 (closed)
- parent #8544 (closed)