Bug 226840

Summary:

CVE-2018-8740

Product:

Ports & Packages

Reporter:

Pavel Volkov <pavelivolkov>

Component:

Individual Port(s)

Assignee:

Yuri Victorovich <yuri>

Status:

Closed FIXED

Severity:

Affects Some People

CC:

pavelivolkov, yuri

Priority:

---

Version:

Latest

Hardware:

Any

OS:

Any

Attachments:

Description	Flags
CVE-2018-8740, path	pavelivolkov: maintainer-approval+

Description Pavel Volkov 2018-03-22 08:22:55 UTC

Created attachment 191730 [details]
CVE-2018-8740, path

Hello.
"Null pointer dereference..." detected on the sqlite3.
This is back-ported path from the current source tree.
This is a additional information:

1. Detect databases whose schema is corrupted using a CREATE TABLE AS statement and issue an appropriate error message.
Check-in [d75e6765] https://www.sqlite.org/src/info/d75e67654aa9620b

2. https://nvd.nist.gov/vuln/detail/CVE-2018-8740

3. https://bugs.launchpad.net/ubuntu/+source/sqlite3/+bug/1756349

Thanks, tj and Yuri.

Comment 1 Yuri Victorovich freebsd_committer

2018-03-22 08:53:06 UTC

Committed.
Thank you for preparing the patch!