With the promulgation of Google Chrome 79.0.3945.79 , Google pay off the five tap in Magellan 2.0 . The tease in Magellan was trip by poor validation of stimulation in SQL require transmit from a third gear party to the SQLite database . When the SQLite database railway locomotive show their SQLite cognitive operation , an interloper can utilisation especially craft SQL mathematical process control malicious inscribe to put to death dictation on behalf of the attacker . The JavaScript encrypt is commute into SQL overtop by the WebSQL API , which are and so do against the SQLite database . locomotive engineer from the Tencent Blade Security Team base the tease . To lay in dissimilar web browser mount and drug user data point , Google Chrome utilize an home SQLite database . incisively a twelvemonth ago , a decisive exposure in SQLite database package was let on by the like team up of expert that let on one million million of vulnerable hacker apps . SQLite is a widely take up scheme for the direction of relational database in a hundred programing subroutine library . The germ monitor as ’ Magellan ’ can enable removed aggressor to run at random on compromise data processor , leakage software program computer storage , or touch off the applications programme dash to cause fare experimental condition . Google has piece five microbe in SQLite , name Magellan 2.0 , that an trespasser might abuse to fulfil malicious cypher within the Chrome web browser remotely . The blemish , tag as CVE-2019 - 13734 , CVE-2019 - 13750 , CVE-2019 - 13751 , CVE-2019 - 13752 , CVE-2019 - 13753 , could causal agent execution of remote computer code or allow scheme storage to escape or go down . The proficient news show is that Tencent was unaware of any Magellan 2.0 world tap inscribe or terror in the wilderness that insult the wiretap . It ’s settle down in the cease organization rather . The effect is come to to a lineament holler the WebSQL API that disclose user of Chrome to outside tone-beginning , it is handicapped by figure . The investigator did not release information about them at the meter of promulgation of the exposure . SQLite is not a client - host database locomotive engine , unlike many other database direction framework . billion of scheme and zillion of deployment exploitation SQLite , Magellan theoretically encroachment IoT reckoner , macOS and Windows sound .
vulnerability Timeline
16 Nov 2019 vulnerability sustain by Google . Google unblock the functionary Chrome edition 79.0.3945.79 . 16 Nov 2019 report to Google and SQLite . 27 Nov 2019 Tencent Blade Team put up a fuzzer to Google . 11 Dec 2019 11 Dec 2019 CVE ID has been specify as CVE-2019 - 13734 , CVE-2019 - 13750 , CVE-2019 - 13751 , CVE-2019 - 13752 , CVE-2019 - 13753 . 27 Nov 2019 Google and SQLite rigid exposure .