Another remote-code execution hole in top database engine SQLite: How it works, and why not to totally freak out

You know the drill: Patch and stop using C
Cisco Talos researchers have uncovered an SQLite use-after-free() vulnerability that could allow an attacker to, in theory, remotely execute code on an affected device.…