CVE-2023-7104

Package: sqlite

OS: 3.16

CVE: CVE-2023-7104

Impacted versions: <=3.43.0 Discovered: less than an hour ago Published: 19 days ago A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classified as critical. This issue affects the function sessionReadRecord of the file ext/session/sqlite3session.c of the component make alltest Handler. The manipulation leads to heap-based buffer overflow. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-248999.

Hi @clandmeter Could you help to fix the sqlite vulnerabilty?

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information