From: JinWang An <jinwang.an@samsung.com>
Date: Wed, 13 Jul 2022 04:49:49 +0000 (+0900)
Subject: Apply CVE-2021-20227 patch
X-Git-Tag: accepted/tizen/6.5/base/20230714.002721^0
X-Git-Url: http://review.tizen.org/git/?a=commitdiff_plain;h=refs%2Fchanges%2F67%2F277767%2F1;p=platform%2Fupstream%2Fsqlite.git

Apply CVE-2021-20227 patch

Change-Id: I4e5df74f99947f2747786d7331a90c8b4b70abb2
Signed-off-by: JinWang An <jinwang.an@samsung.com>
---

diff --git a/packaging/CVE-2021-20227.patch b/packaging/CVE-2021-20227.patch
new file mode 100644
index 0000000..5a011fa
--- /dev/null
+++ b/packaging/CVE-2021-20227.patch
@@ -0,0 +1,15 @@
+diff --git a/sqlite3.c b/sqlite3.c
+index a827449..32bd44c 100644
+--- a/sqlite3.c
++++ b/sqlite3.c
+@@ -134884,7 +134884,9 @@ static void explainSimpleCount(
+ static int havingToWhereExprCb(Walker *pWalker, Expr *pExpr){
+   if( pExpr->op!=TK_AND ){
+     Select *pS = pWalker->u.pSelect;
+-    if( sqlite3ExprIsConstantOrGroupBy(pWalker->pParse, pExpr, pS->pGroupBy) ){
++    if( sqlite3ExprIsConstantOrGroupBy(pWalker->pParse, pExpr, pS->pGroupBy)
++     && ExprAlwaysFalse(pExpr)==0
++     ){
+       sqlite3 *db = pWalker->pParse->db;
+       Expr *pNew = sqlite3Expr(db, TK_INTEGER, "1");
+       if( pNew ){