SQLite patches 22-year-old code execution, denial of service vulnerability


In order to prevent attackers from using a high severity vulnerability to crash or take control of programmes that rely on the software, the maintainers of the SQLite database engine have fixed it.

The Daily Swig has received a persuasive justification from the software’s creators that it would be challenging to actually exploit the problem. However, rather than brushing off the problem as something that can be safely disregarded, they changed the software with a patch to defend against the weakness. Read More…