Skip to content

feat: add bdk_sqlite_store crate implementing PersistBackend backed b… #698

feat: add bdk_sqlite_store crate implementing PersistBackend backed b…

feat: add bdk_sqlite_store crate implementing PersistBackend backed b… #698

This check has been archived and is scheduled for deletion. Learn more about checks retention
GitHub Actions / Security audit failed Sep 20, 2023 in 0s

Security advisories found

1 advisory(ies), 1 other

Details

Vulnerabilities

RUSTSEC-2022-0090

libsqlite3-sys via C SQLite CVE-2022-35737

Details
Package libsqlite3-sys
Version 0.24.2
URL https://nvd.nist.gov/vuln/detail/CVE-2022-35737
Date 2022-08-03
Patched versions >=0.25.1

It was sometimes possible for SQLite versions >= 1.0.12, < 3.39.2 to allow an array-bounds overflow when large string were input into SQLite's printf function.

As libsqlite3-sys bundles SQLite, it is susceptible to the vulnerability. libsqlite3-sys was updated to bundle the patched version of SQLite here.