ubuntu · CVE-2017-15286

Quick triage

Priority: low Published: 2017-10-12 08:29:00 UTC Updated: 2025-08-25 22:26:40 UTC

View at Official ubuntu advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2017-15286 low priority: Ubuntu including 1 source packages (sqlite3), 6 status rows across 6 suites (artful, bionic, trusty, upstream, xenial, zesty): not-affected 3, ignored 2, needs-triage 1.

Description:

SQLite 3.20.1 has a NULL pointer dereference in tableColumnList in shell.c because it fails to consider certain cases where `sqlite3_step(pStmt)==SQLITE_ROW` is false and a data structure is never initialized.

cvelogic Threat Intelligence