Re: [sqlite] CVE's opened on 3.30.1 status

ssage- From: drhsql...@gmail.com On Behalf Of Richard Hipp Sent: Tuesday, December 24, 2019 6:31 PM To: SQLite mailing list Cc: Raitses, Alex Subject: Re: [sqlite] CVE's opened on 3.30.1 status On 12/24/19, Raitses, Alex wrote: > Hi, > Can you please update on status of the following CV

[sqlite] CVE's opened on 3.30.1 status

Hi, Can you please update on status of the following CVE’s submitted on 3.30.1? CVE’s link to patches references GitHub branch, however I could find corresponding submits to Fossil repository. CVE’s list: https://nvd.nist.gov/vuln/detail/CVE-2019-19244 https://nvd.nist.gov/vuln/detail/CVE-2019-196

[sqlite] CVE-2019-19317

Hello, CVE-2019-19317 (https://nvd.nist.gov/vuln/detail/CVE-2019-19317) was submitted on SQLite. As far as I can see the patch is already submitted. Can you confirm please? Do you have estimation for the fixed version release? Thanks in advance, Regards, Alex ---

[sqlite] Klocwork static analysis report

Hello, Please find attached Klocwork static analysis report for “C source code as an amalgamation”, version 3.30.1 (sqlite3.c). Can you please review the report attached and update which bugs can be fixed. Regards, Alex - Intel

Re: [sqlite] SQLite version 3.30.0 in about two weeks.

Hello, I have noticed that security CVE (https://nvd.nist.gov/vuln/detail/CVE-2019-16168) has been submitted on SQLite. As far as I can see the patch was submitted to the trunk. Will CVE patch be included in the 3.30.0? Regards, Alex -Original Message- From: sqlite-users On Behalf Of