Jul 20, 2020 8:00 pm EDT
Categorized: Critical Severity
Share this post:
In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation. TensorFlow in WML CE uses SQLite as its embedded SQL database engine.
Affected product(s) and affected version(s):
| Affected Product(s) | Version(s) |
| IBM Watson Machine Learning Community Edition | 1.6.2 |
| IBM Watson Machine Learning Community Edition | 1.7.0 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6250937
from IBM Product Security Incident Response Team https://ift.tt/32FiIVQ
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.