Search for packages
Package details: pkg:deb/debian/sqlite@2.8.17-4
purl pkg:deb/debian/sqlite@2.8.17-4
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-9shw-jj4d-aaah
Aliases:
CVE-2016-6153
os_unix.c in SQLite before 3.13.0 improperly implements the temporary directory search algorithm, which might allow local users to obtain sensitive information, cause a denial of service (application crash), or have unspecified other impact by leveraging use of the current working directory for temporary files. There are no reported fixed by versions.
VCID-m77k-ax1z-aaam
Aliases:
CVE-2018-8740
In SQLite through 3.22.0, databases whose schema is corrupted using a CREATE TABLE AS statement could cause a NULL pointer dereference, related to build.c and prepare.c. There are no reported fixed by versions.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-c655-6q15-aaam Buffer overflow in the sqlite_decode_binary function in src/encode.c in SQLite 2, as used by PHP 4.x through 5.x and other applications, allows context-dependent attackers to execute arbitrary code via an empty value of the in parameter. NOTE: some PHP installations use a bundled version of sqlite without this vulnerability. The SQLite developer has argued that this issue could be due to a misuse of the sqlite_decode_binary() API. CVE-2007-1888

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T15:46:27.708741+00:00 Debian Oval Importer Fixing VCID-c655-6q15-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:50:43.866756+00:00 Debian Oval Importer Affected by VCID-9shw-jj4d-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:24:25.087708+00:00 Debian Oval Importer Affected by VCID-m77k-ax1z-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T08:16:19.397823+00:00 Debian Oval Importer Affected by VCID-m77k-ax1z-aaam None 36.1.3
2025-06-21T08:16:18.056110+00:00 Debian Oval Importer Affected by VCID-9shw-jj4d-aaah None 36.1.3
2025-06-20T23:23:12.049959+00:00 Debian Oval Importer Fixing VCID-c655-6q15-aaam None 36.1.3
2025-06-08T08:40:00.589701+00:00 Debian Oval Importer Fixing VCID-c655-6q15-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:45:47.873099+00:00 Debian Oval Importer Affected by VCID-9shw-jj4d-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:25:53.413607+00:00 Debian Oval Importer Affected by VCID-m77k-ax1z-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T01:57:41.273026+00:00 Debian Oval Importer Affected by VCID-m77k-ax1z-aaam None 36.1.0
2025-06-08T01:57:39.903122+00:00 Debian Oval Importer Affected by VCID-9shw-jj4d-aaah None 36.1.0
2025-06-07T16:46:05.847415+00:00 Debian Oval Importer Fixing VCID-c655-6q15-aaam None 36.1.0
2025-04-08T07:11:27.051230+00:00 Debian Oval Importer Fixing VCID-c655-6q15-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:17:31.927046+00:00 Debian Oval Importer Affected by VCID-9shw-jj4d-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:57:03.566587+00:00 Debian Oval Importer Affected by VCID-m77k-ax1z-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T00:29:20.071150+00:00 Debian Oval Importer Affected by VCID-m77k-ax1z-aaam None 36.0.0
2025-04-08T00:29:18.672556+00:00 Debian Oval Importer Affected by VCID-9shw-jj4d-aaah None 36.0.0
2025-04-07T15:18:42.597492+00:00 Debian Oval Importer Fixing VCID-c655-6q15-aaam None 36.0.0