First published: Wed Aug 12 2015(Updated: )
Buffer overflow in the skip-scan optimization in SQLite 3.8.2 allows remote attackers to cause a denial of service (crash) via crafted SQL statements.
Credit: security@ubuntu.com
Affected Software | Affected Version | How to fix |
---|---|---|
Ubuntu Linux | =12.04 | |
Ubuntu Linux | =14.04 | |
Ubuntu Linux | =15.04 | |
SQLite | =3.8.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2013-7443 is classified as a denial of service vulnerability due to its potential to crash applications using SQLite 3.8.2.
To fix CVE-2013-7443, upgrade SQLite to a version later than 3.8.2 where this vulnerability is resolved.
CVE-2013-7443 affects SQLite version 3.8.2 and certain versions of Ubuntu Linux including 12.04, 14.04, and 15.04.
Yes, CVE-2013-7443 can be exploited remotely through crafted SQL statements sent to the database.
The potential impacts of CVE-2013-7443 include application crashes leading to service downtime.