Security Updates Released for SQLite Magellan Vulnerability

Security updates have been released to address a vulnerability named 'Magellan' in the SQLite database. A remote attacker can exploit this vulnerability to execute arbitrary code on an affected system.

Threat ID:: CC-2851
Category:
Threat Severity:: Low
Threat Vector:
Published:: 18 December 2018 12:00 AM

Report a cyber attack: call 0300 303 5222 or email [email protected]

This content has been archived

This article no longer conforms to NHS Digital's standards for cyber alerts, and may contain outdated or inaccurate information. Use of this information contained in this page is at your own risk

Summary

Affected platforms

The following platforms are known to be affected:

Chromium

Chromium - Versions 70.0.3538.110 and earlier

SQLite - Versions 3.25.3 and earlier

Threat details

Remediation steps

Type	Step
	Users and administrators are encouraged to read the Tencent Blade Team report and apply the necessary updates to any software that uses the SQLite database (this is not a comprehensive list): Chromium version 71.0.3578.80 or later SQLite version 3.26.0 or later

Type

Step

Users and administrators are encouraged to read the Tencent Blade Team report and apply the necessary updates to any software that uses the SQLite database (this is not a comprehensive list):

Last edited: 17 February 2020 12:59 pm