ibkr-docker icon indicating copy to clipboard operation
ibkr-docker copied to clipboard
verified publisher icon extrange

Vulnerability Report: CVE-2023-7104 - Update SQLite

Open federico0123 opened this issue 1 year ago • 0 comments

Hi all,

I wanted to bring to your attention a security vulnerability identified as CVE-2023-7104, which affects SQLite versions up to 3.43.0. This vulnerability can lead to a heap-based buffer overflow in the sessionReadRecord function.

Further details for your reference: Affected Version: SQLite versions up to and including 3.43.0 Fixed Version: SQLite 3.43.1 and later contain patches for this vulnerability. More Information: CVE-2023-7104 Details

I recommend updating the SQLite dependency in the project to at least version 3.43.1 to ensure that it is secure and protected from this vulnerability.

Thank you for your hard work on this project! If you need any assistance or further information regarding this issue, feel free to reach out.

Best regards, Federico

federico0123 avatar Oct 26 '24 22:10 federico0123