[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: Re: [oss-security] Information on recent sqlite3 issues?
From: Andreas Stieger <astieger () suse ! com>
Date: 2017-05-31 22:24:10
Message-ID: 95c188ba-76a3-7190-94ea-a369d011ae6c () suse ! com
[Download RAW message or body]
Hello,
On 05/31/2017 10:30 PM, Moritz Muehlenhoff wrote:
> one of the latest Apple advisories mentions several vulnerabilities in sqlite:
> https://support.apple.com/en-us/HT207798
>
> CVE-2017-2513: found by OSS-Fuzz
> CVE-2017-2518: found by OSS-Fuzz
> CVE-2017-2520: found by OSS-Fuzz
> CVE-2017-2519: found by OSS-Fuzz
> CVE-2017-6983: Chaitin Security Research Lab (@ChaitinTech) working with Trend Micro's Zero Day Initiative
> CVE-2017-6991: Chaitin Security Research Lab (@ChaitinTech) working with Trend Micro's Zero Day Initiative
>
> Does anyone have additional information on those and whether that
> applies to the standard sqlite releases or Apple-specific changes?
SUSE has asked Apple, but has not yet received an answer as far as I am
aware.
Andreas
--
Andreas Stieger <astieger@suse.com>
Project Manager Security
SUSE Linux GmbH, GF: Felix Imendörffer, Jane Smithard, Graham Norton,
HRB 21284 (AG Nürnberg)
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic