Skip to content

1.5.1 / 2022-09-29
Compare
Choose a tag to compare
@flavorjones flavorjones released this 30 Sep 01:50
v1.5.1
8ab3ecc
This commit was signed with the committer’s verified signature.
flavorjones Mike Dalessio
GPG key ID: 6291CAA755BBD80D
Learn about vigilant mode.

1.5.1 / 2022-09-29

Dependencies

  • Vendored sqlite is updated to v3.39.4.

Security

The vendored version of sqlite, v3.39.4, should be considered to be a security release. From the release notes:

Version 3.39.4 is a minimal patch against the prior release that addresses issues found since the
prior release. In particular, a potential vulnerability in the FTS3 extension has been fixed, so
this should be considered a security update.

In order to exploit the vulnerability, an attacker must have full SQL access and must be able to
construct a corrupt database with over 2GB of FTS3 content. The problem arises from a 32-bit
signed integer overflow.

For more information please see GHSA-mgvv-5mxp-xq67.

sha256:

f9094440f8e561c5d37cf66a13c807f60ce5013d0a40ee5ee5942906b9cc77c4  sqlite3-1.5.1-aarch64-linux.gem
8ef2be3d373b4e4c4c3f7622b63403d1f7109fa5b9d922203ce29671f19d6b32  sqlite3-1.5.1-arm-linux.gem
aa38f01893530612dd1cb3083dc34fe3a22a7cb00393f9bdaa67c4498b228e06  sqlite3-1.5.1-arm64-darwin.gem
7940ee9080313fa44c9b33cd7c24c069f40f208b970234867239ef6b6d24db31  sqlite3-1.5.1-x64-mingw-ucrt.gem
1ee072798f8e10df1f34a8ee884eaad82a2d40b0cbbe5ebca2bcf937a9ca954c  sqlite3-1.5.1-x64-mingw32.gem
0e3807ad01aa6c77896d68658706b950328dd991e1dc8e9c56cafa69d64b4282  sqlite3-1.5.1-x86-linux.gem
319b1227e4983549f35997518dfa48df89239055e2460ec13277d84b2f3b200f  sqlite3-1.5.1-x86_64-darwin.gem
d983ba51eff37c3679963949f4132b32f528d0a0bc3df09150c8e1a0a88e0444  sqlite3-1.5.1-x86_64-linux.gem
9148b84e4810284fe18573fce214060011d3f7af3a46a3ebd65b066da8242fbc  sqlite3-1.5.1.gem
Assets 2
Loading
0 Join discussion