By Andreas Kellas Trail of Bits is publicly disclosing CVE-2022-35737, which affects applications that use the SQLite library API. CVE-2022-35737 was introduced in SQLite version 1.0.12 (released on October 17, 2000) and fixed in release 3.39.2 (released on July 21, 2022). CVE-2022-35737 is exploitable on 64-bit systems, and exploitability depends on how the program is compiled; arbitrary code exe
![Stranger Strings: An exploitable flaw in SQLite](https://cdn-ak-scissors.b.st-hatena.com/image/square/c09196fe2b387fc4ec9c6458500a99b5e4d88e83/height=288;version=1;width=512/https%3A%2F%2Fblog.trailofbits.com%2Fwp-content%2Fuploads%2F2022%2F10%2Fphp.png)