CVE-2019-19924

SQLite 3.30.1 mishandles certain parser-tree rewriting, related to expr.c, vdbeaux.c, and window.c. This is caused by incorrect sqlite3WindowRewrite() error handling.
Configurations

Configuration 1 (hide)

cpe:2.3:a:sqlite:sqlite:3.30.1:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:siemens:sinec_infrastructure_network_services:*:*:*:*:*:*:*:*

Configuration 3 (hide)

cpe:2.3:a:apache:bookkeeper:4.12.1:*:*:*:*:*:*:*

Configuration 4 (hide)

cpe:2.3:a:oracle:mysql_workbench:*:*:*:*:*:*:*:*

Configuration 5 (hide)

cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*

History

15 Apr 2022, 16:18

Type Values Removed Values Added
CPE cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
cpe:2.3:a:apache:bookkeeper:4.12.1:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinec_infrastructure_network_services:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_workbench:*:*:*:*:*:*:*:*
References (N/A) https://www.oracle.com/security-alerts/cpuapr2020.html - (N/A) https://www.oracle.com/security-alerts/cpuapr2020.html - Patch, Third Party Advisory
References (CONFIRM) https://security.netapp.com/advisory/ntap-20200114-0003/ - (CONFIRM) https://security.netapp.com/advisory/ntap-20200114-0003/ - Third Party Advisory
References (UBUNTU) https://usn.ubuntu.com/4298-1/ - (UBUNTU) https://usn.ubuntu.com/4298-1/ - Broken Link
References (MISC) https://github.com/sqlite/sqlite/commit/8654186b0236d556aa85528c2573ee0b6ab71be3 - Patch (MISC) https://github.com/sqlite/sqlite/commit/8654186b0236d556aa85528c2573ee0b6ab71be3 - Patch, Third Party Advisory
References (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf - (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf - Patch, Third Party Advisory
References (MLIST) https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E - (MLIST) https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E - Mailing List, Third Party Advisory
References (MLIST) https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E - (MLIST) https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E - Mailing List, Third Party Advisory

10 Mar 2022, 17:41

Type Values Removed Values Added
References
  • (MLIST) https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E -
  • (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf -

29 Jun 2021, 15:15

Type Values Removed Values Added
References
  • (MLIST) https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E -

Information

Published : 2019-12-24 16:15

Updated : 2024-02-04 20:39


NVD link : CVE-2019-19924

Mitre link : CVE-2019-19924

CVE.ORG link : CVE-2019-19924


JSON object : View

Products Affected

siemens

  • sinec_infrastructure_network_services

sqlite

  • sqlite

apache

  • bookkeeper

oracle

  • mysql_workbench

netapp

  • cloud_backup
CWE
CWE-755

Improper Handling of Exceptional Conditions