Commit 088d6ade authored Dec 06, 2019 by Sylvain Beucler

CVE-2019-19317/sqlite3: < 3.31.0 not-affected

parent 327e5028

Show whitespace changes

Inline Side-by-side

Utkarsh Gupta @utkarsh2102 · Dec 06, 2019

Hi @beuc,
Are you sure about this, though? Because the upstream patch does apply to all the patches before 3.31.0 as well. Just that the test file is not there, but I can see the patch applying in src/resolve.c at least.
Of course, I did not look deep enough (or even built it to see how everything goes) so asking it here :)

Edited Dec 06, 2019 by Utkarsh Gupta

Hi @beuc, Are you sure about this, though? Because the upstream patch does apply to all the patches before 3.31.0 as well. Just that the test file is not there, but I can see the patch applying in src/resolve.c at least. Of course, I did not look deep enough (or even built it to see how everything goes) so asking it here :)
Sylvain Beucler @beuc · Dec 06, 2019

Author Developer

It applies but raises multiple compilation errors due to missing support. https://www.sqlite.org/draft/gencol.html#compatibility

It applies but raises multiple compilation errors due to missing support. https://www.sqlite.org/draft/gencol.html#compatibility
Utkarsh Gupta @utkarsh2102 · Dec 06, 2019

Sounds good, many thanks for the clarification! 🌮

Sounds good, many thanks for the clarification! :taco:

Please register or to comment