Vulnerable sqlite3 version detected

Support for security such as Firewalls and securing linux
Post Reply
prabhasptc
Posts: 1
Joined: 2019/11/07 13:45:06

Vulnerable sqlite3 version detected

Post by prabhasptc » 2019/11/07 13:49:56

Sqlite3 Window Function Remote Code Execution Vulnerability detected on Centos server and CVEID is CVE-2019-5018.

User avatar
TrevorH
Site Admin
Posts: 33202
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Vulnerable sqlite3 version detected

Post by TrevorH » 2019/11/07 14:46:03

https://access.redhat.com/security/cve/CVE-2019-5018
This issue did not affect the versions of sqlite as shipped with Red Hat Enterprise Linux 5, 6, and 7 as they did not include support for Window functions.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

Post Reply