Test ID:	1.3.6.1.4.1.25623.1.1.10.2022.0175
Category:	Mageia Linux Local Security Checks
Title:	Mageia: Security Advisory (MGASA-2022-0175)
Summary:	The remote host is missing an update for the 'sqlite3' package(s) announced via the MGASA-2022-0175 advisory.
Description:	Summary: The remote host is missing an update for the 'sqlite3' package(s) announced via the MGASA-2022-0175 advisory. Vulnerability Insight: ** DISPUTED ** A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL query. NOTE: the vendor disputes the relevance of this report because a sqlite3.exe user already has full privileges (e.g., is intentionally allowed to execute commands). This report does NOT imply any problem in the SQLite library. As the cve assignment is disputed, this update may be changed in future from a security update to a bugfix update. Affected Software/OS: 'sqlite3' package(s) on Mageia 8. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2021-36690 http://seclists.org/fulldisclosure/2022/Oct/28 http://seclists.org/fulldisclosure/2022/Oct/47 http://seclists.org/fulldisclosure/2022/Oct/49 http://seclists.org/fulldisclosure/2022/Oct/39 http://seclists.org/fulldisclosure/2022/Oct/41 https://www.sqlite.org/forum/forumpost/718c0a8d17
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.