Users need to upgrade their OSes in order to fix the issues

Aug 2, 2015 20:40 GMT  ·  By

Canonical has published in a security notice details about a number of SQLite vulnerabilities that have been found and fixed in Ubuntu 15.04, Ubuntu 14.04 LTS, and Ubuntu 12.04 LTS OSes.

A new SQLite update has been released and Ubuntu maintainers have been quick to integrate the changes in all the supported OSes. It's an important package, so upgrading your OS would be a good idea.

According to the security notice, "Michal Zalewski discovered that SQLite incorrectly handled decoding of collation-sequence names. An attacker could use this issue to cause applications using SQLite to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 LTS and Ubuntu 15.04."

This is just one of the issues found. For a more detailed description of the problems, you can check Canonical's security notification. In order to fix the issues, the Ubuntu users have been advised to upgrade their systems.

The flaw can be fixed if you upgrade your system(s) to the latest libsqlite3-0 packages specific to each distribution. To apply the patch, users can simply run the Update Manager application.

If you don't want to use the Software Updater, you can open a terminal and enter the following commands:

code
sudo apt-get update
sudo apt-get dist-upgrade