Skip to content

Navigation Menu

Explore
For
- Enterprise
- Teams
- Startups
- Education
By Solution
Resources
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

NixOS / nixpkgs Public

Notifications
Fork 12.4k
Star 15.8k

Code
Issues 5k+
Pull requests 5k+
Actions
Projects 35
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Projects
Security
Insights

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[20.03] sqlite: 3.32.2 -> 3.32.3 #92160

Merged

ckauhaus merged 1 commit into NixOS:staging-20.03 from ckauhaus:sqlite-cves-20.03

Jul 7, 2020

Merged

[20.03] sqlite: 3.32.2 -> 3.32.3 #92160

ckauhaus merged 1 commit into NixOS:staging-20.03 from ckauhaus:sqlite-cves-20.03

Jul 7, 2020

Conversation 0 Commits 1 Checks 0 Files changed

Conversation

Copy link

Contributor

ckauhaus commented Jul 3, 2020

Motivation for this change

Cherry pick 8b5bb18

Fixes various security issues:

CVE-2019-19242
CVE-2019-19244
CVE-2019-19317
CVE-2019-19603
CVE-2019-19645
CVE-2019-19646
CVE-2019-19880
CVE-2019-19923
CVE-2019-19924
CVE-2019-19925
CVE-2019-19926
CVE-2019-19959
CVE-2019-20218
CVE-2020-9327
CVE-2020-11655
CVE-2020-11656
CVE-2020-13434
CVE-2020-13435
CVE-2020-13630
CVE-2020-13631
CVE-2020-13632
CVE-2020-13871
CVE-2020-15358

Re #92072, #90989, #88403, #88401, #88400, #77944, #92063, #90990

Things done

Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS linux)
Built on platform(s)
- NixOS
- macOS
- other Linux distributions
Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
Tested compilation of all pkgs that depend on this change using nix-shell -p nixpkgs-review --run "nixpkgs-review wip"
Tested execution of all binary files (usually in ./result/bin/)
Determined the impact on package closure size (by running nix path-info -S before and after)
Ensured that relevant documentation is up to date
Fits CONTRIBUTING.md.

Sorry, something went wrong.

All reactions


          sqlite: 3.32.2 -> 3.32.3

a7ce724

Fixes:

CVE-2019-19242
CVE-2019-19244
CVE-2019-19317
CVE-2019-19603
CVE-2019-19645
CVE-2019-19646
CVE-2019-19880
CVE-2019-19923
CVE-2019-19924
CVE-2019-19925
CVE-2019-19926
CVE-2019-19959
CVE-2019-20218
CVE-2020-9327
CVE-2020-11655
CVE-2020-11656
CVE-2020-13434
CVE-2020-13435
CVE-2020-13630
CVE-2020-13631
CVE-2020-13632
CVE-2020-13871
CVE-2020-15358

Re NixOS#92072, NixOS#90989, NixOS#88403, NixOS#88401, NixOS#88400, NixOS#77944, NixOS#92063, NixOS#90990

ofborg bot requested review from edolstra and np

July 3, 2020 10:56

ofborg bot added 10.rebuild-darwin: 501+ 10.rebuild-darwin: 5001+ 10.rebuild-linux: 501+ 10.rebuild-linux: 5001+ labels

ckauhaus merged commit 02a83b1 into NixOS:staging-20.03

ckauhaus deleted the sqlite-cves-20.03 branch

July 7, 2020 07:34

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

edolstra Awaiting requested review from edolstra

np Awaiting requested review from np

Assignees

No one assigned

Labels

10.rebuild-darwin: 501+ 10.rebuild-darwin: 5001+ 10.rebuild-linux: 501+ 10.rebuild-linux: 5001+

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

None yet

1 participant

Add this suggestion to a batch that can be applied as a single commit. This suggestion is invalid because no changes were made to the code. Suggestions cannot be applied while the pull request is closed. Suggestions cannot be applied while viewing a subset of changes. Only one suggestion per line can be applied in a batch. Add this suggestion to a batch that can be applied as a single commit. Applying suggestions on deleted lines is not supported. You must change the existing code in this line in order to create a valid suggestion. Outdated suggestions cannot be applied. This suggestion has been applied or marked resolved. Suggestions cannot be applied from pending reviews. Suggestions cannot be applied on multi-line comments. Suggestions cannot be applied while the pull request is queued to merge. Suggestion cannot be applied right now. Please check back later.

Footer

© 2024 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.