* sqlite: bump version to 3.39.2 to address CVE-2022-35737
* sqlite: cgmanifest: update entry
* sqlite: manifests: bump entry
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
* sqlite: Address CVE-2021-36690
Fix an issue with the SQLite Expert extension when a column
has no collating sequence
Upstream patch: https://sqlite.org/src/info/b1e0c22ec981cf5f
Forum post: https://sqlite.org/forum/forumpost/78165fa250
This is a port of the upstream commit to the SQLite Expert extension
which addresses CVE-2021-36690.
We do not ship the extensions separately so instead we need to directly
patch the offending code which is found in shell.c.
* Update toolchain and pkggen manifest files
* toolchain: add CVE patch to sqlite build in toolchain
Signed-off-by: Chris Co <chrco@microsoft.com>
Henry Li
Daniel McIlvaney
Muhammad Falak R Wani
Christopher Co
Thomas Crain
Neha Agarwal
Pawel Winogrodzki
rychenf1
Jon Slobodzian