sqlite: Heap-buffer overflow in the getNodeSize function (CVE-2017-10989)
The getNodeSize function in ext/rtree/rtree.c in SQLite through 3.19.3,
as used in GDAL
and other products, mishandles undersized RTree blobs in a crafted
database,
leading to a heap-based buffer over-read or possibly unspecified other
impact.
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-10989
https://marc.info/?l=oss-security&m=149945242611289&w=2
Patch:
https://sqlite.org/src/info/66de6f4a
(from redmine: issue id 7949, created on 2017-10-02, closed on 2017-10-04)
- Relations:
- child #7950 (closed)
- child #7951 (closed)
- child #7952 (closed)
- child #7953 (closed)