Description

SQLite through 3.31.1 allows attackers to cause a denial of service (segmentation fault) via a malformed window-function query because the AggInfo object's initialization is mishandled.

Remediation

References

CVE-2020-11655

Related Vulnerabilities

Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.9.25)

OpenSSL Uncontrolled Resource Consumption Vulnerability (CVE-2016-6307)

Vanilla Forums Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2018-15833)

Moodle CVE-2011-4301 Vulnerability (CVE-2011-4301)

PHP-Fusion Authentication Bypass by Capture-replay Vulnerability (CVE-2020-23178)

Severity

High

Classification

CVE-2020-11655 CWE-665 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities