Format: 1.8
Date: Mon, 08 Jun 2020 08:43:24 -0400
Source: sqlite3
Binary: lemon libsqlite3-0 libsqlite3-dev libsqlite3-tcl sqlite3
Architecture: riscv64
Version: 3.31.1-4ubuntu0.1
Distribution: focal
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@riscv64-qemu-lcy01-020.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 lemon      - LALR(1) Parser Generator for C or C++
 libsqlite3-0 - SQLite 3 shared library
 libsqlite3-dev - SQLite 3 development files
 libsqlite3-tcl - SQLite 3 Tcl bindings
 sqlite3    - Command line interface for SQLite 3
Changes:
 sqlite3 (3.31.1-4ubuntu0.1) focal-security; urgency=medium
 .
   * SECURITY UPDATE: DoS via malformed window-function query
     - debian/patches/CVE-2020-11655-2.patch: in the event of error,
       early-out in src/select.c, test/window1.test.
     - debian/patches/CVE-2020-11655-3.patch: do not suppress errors when
       resolving references in src/resolve.c, test/altertab.test.
     - CVE-2020-11655
   * SECURITY UPDATE: integer overflow in sqlite3_str_vappendf
     - debian/patches/CVE-2020-13434.patch: limit the "precision" of
       floating-point to text conversions in src/printf.c, test/printf.test.
     - CVE-2020-13434
   * SECURITY UPDATE: segmentation fault in sqlite3ExprCodeTarget
     - debian/patches/CVE-2020-13435-pre1.patch: move some utility Walker
       callbacks in src/expr.c, src/select.c, src/sqliteInt.h,
       src/walker.c.
     - debian/patches/CVE-2020-13435-1.patch: be sure to adjust the Expr.op2
       field appropriately in src/resolve.c, src/window.c,
       test/window1.test.
     - debian/patches/CVE-2020-13435-2.patch: add defensive code in
       src/expr.c.
     - CVE-2020-13435
   * SECURITY UPDATE: use-after-free in fts3EvalNextRow
     - debian/patches/CVE-2020-13630.patch: add fix to ext/fts3/fts3.c,
       test/fts3snippet.test.
     - CVE-2020-13630
   * SECURITY UPDATE: virtual table rename issue
     - debian/patches/CVE-2020-13631.patch: do not allow a virtual table to
       be renamed into the name of one of its shadows in src/alter.c,
       src/build.c, src/sqliteInt.h.
     - CVE-2020-13631
   * SECURITY UPDATE: NULL pointer dereference
     - debian/patches/CVE-2020-13632.patch: fix issue in
       ext/fts3/fts3_snippet.c, test/fts3matchinfo2.test.
     - CVE-2020-13632
Checksums-Sha1:
 3c3527d31ec4651d6423b04b34a0111644baef0f 86064 lemon-dbgsym_3.31.1-4ubuntu0.1_riscv64.ddeb
 6a9af268b177c0b20301fad2f2c53351fa3f3aa4 54412 lemon_3.31.1-4ubuntu0.1_riscv64.deb
 496e81480a3c68414dcca620ce25849e34a7c626 1797712 libsqlite3-0-dbgsym_3.31.1-4ubuntu0.1_riscv64.ddeb
 5559cb544a64ae0727acacab3e8beb1adb92db52 487220 libsqlite3-0_3.31.1-4ubuntu0.1_riscv64.deb
 145b5ccc61ec296c4246746d76e2ac40c4243b4d 1383280 libsqlite3-dev_3.31.1-4ubuntu0.1_riscv64.deb
 43b9141764115dfda8417448f68618347a0da7c0 66660 libsqlite3-tcl-dbgsym_3.31.1-4ubuntu0.1_riscv64.ddeb
 2e6ae9039804c018922de5863eff9d725a05f9ef 19684 libsqlite3-tcl_3.31.1-4ubuntu0.1_riscv64.deb
 d94cd0760c1a7c1c19cb87d1c733740eacdd34fa 3964216 sqlite3-dbgsym_3.31.1-4ubuntu0.1_riscv64.ddeb
 77e04c095a10a7d3582149e6af3730776c3d815b 7524 sqlite3_3.31.1-4ubuntu0.1_riscv64.buildinfo
 4103e30ffa1ef39571744b6d40488fc0a3b82652 754864 sqlite3_3.31.1-4ubuntu0.1_riscv64.deb
Checksums-Sha256:
 22d70d325dea68786511c265d9a26bcbf0583eb835232c48701d4dbedc3be684 86064 lemon-dbgsym_3.31.1-4ubuntu0.1_riscv64.ddeb
 326505312479b941dead1da6aabeffec9ab41386e143817777b709276526afda 54412 lemon_3.31.1-4ubuntu0.1_riscv64.deb
 f6acbc121dacea81bd102c433ab40f5c4b33d499dc6cf10732474976c7a9f96d 1797712 libsqlite3-0-dbgsym_3.31.1-4ubuntu0.1_riscv64.ddeb
 73e29c4e7e65be6dc1fa5df629aea0ae9f2a11f008e73ecf643ce5ef205b6b55 487220 libsqlite3-0_3.31.1-4ubuntu0.1_riscv64.deb
 9680e7ead6a3d6b3191ab79ce423fa7b340040dd2f0432d54f9ab952d754ed96 1383280 libsqlite3-dev_3.31.1-4ubuntu0.1_riscv64.deb
 f15feda6a0da460b3a922c924a8a457a4eb45aa534092127cd9780be4403e3ce 66660 libsqlite3-tcl-dbgsym_3.31.1-4ubuntu0.1_riscv64.ddeb
 8d3a9a178f7d876491b22e4d07a65fcb10daf53b220e3ab185e3d913f6921243 19684 libsqlite3-tcl_3.31.1-4ubuntu0.1_riscv64.deb
 7ca88b3fdc3797805d2c6ddcec53f696ac894563b054242540749cc811291019 3964216 sqlite3-dbgsym_3.31.1-4ubuntu0.1_riscv64.ddeb
 5dafec1b35237e7835c03fb57429208c5cd11a5c081869e425d03d336be7f34e 7524 sqlite3_3.31.1-4ubuntu0.1_riscv64.buildinfo
 9eb8c8fc7fdbddfe099c57a34b93e83c6fda39ab88a8f50925e662bc23512bf6 754864 sqlite3_3.31.1-4ubuntu0.1_riscv64.deb
Files:
 f37a1dc932e9fb2bc75475eff6e2d39e 86064 debug optional lemon-dbgsym_3.31.1-4ubuntu0.1_riscv64.ddeb
 2a0891b920f023cb17c052134c5b9b24 54412 devel optional lemon_3.31.1-4ubuntu0.1_riscv64.deb
 f3aeebf073656032cbe9f74cf4be0ebe 1797712 debug optional libsqlite3-0-dbgsym_3.31.1-4ubuntu0.1_riscv64.ddeb
 96f040e8e780132288b07e0143456dbf 487220 libs optional libsqlite3-0_3.31.1-4ubuntu0.1_riscv64.deb
 06d5fda4666b0166c2318dd55c008778 1383280 libdevel optional libsqlite3-dev_3.31.1-4ubuntu0.1_riscv64.deb
 f52619881b6e8378f92bc45947ed06c0 66660 debug optional libsqlite3-tcl-dbgsym_3.31.1-4ubuntu0.1_riscv64.ddeb
 768cd3a6e2466e27957bbe6213a4ed7f 19684 interpreters optional libsqlite3-tcl_3.31.1-4ubuntu0.1_riscv64.deb
 4377426e30cd61b63182d186edba0dbd 3964216 debug optional sqlite3-dbgsym_3.31.1-4ubuntu0.1_riscv64.ddeb
 5f1adc1c9287ced9e8484e78d2dbe4c4 7524 devel optional sqlite3_3.31.1-4ubuntu0.1_riscv64.buildinfo
 b7fc1b0b22182a63863c44c70f0b9f9c 754864 database optional sqlite3_3.31.1-4ubuntu0.1_riscv64.deb
Original-Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org>