Описание
Security update for sqlite3
This update for sqlite3 fixes the following issues:
- Update to version 3.50.2
- CVE-2025-6965: Fixed an integer truncation to avoid assertion faults. (bsc#1246597)
Список пакетов
SUSE Linux Enterprise Server 12 SP5-LTSS
libsqlite3-0-3.50.2-9.41.1
libsqlite3-0-32bit-3.50.2-9.41.1
sqlite3-3.50.2-9.41.1
sqlite3-devel-3.50.2-9.41.1
sqlite3-tcl-3.50.2-9.41.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
libsqlite3-0-3.50.2-9.41.1
libsqlite3-0-32bit-3.50.2-9.41.1
sqlite3-3.50.2-9.41.1
sqlite3-devel-3.50.2-9.41.1
sqlite3-tcl-3.50.2-9.41.1
Ссылки
- Link for SUSE-SU-2025:02744-1
- E-Mail link for SUSE-SU-2025:02744-1
- SUSE Security Ratings
- SUSE Bug 1246597
- SUSE CVE CVE-2025-6965 page
Описание
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5-LTSS:libsqlite3-0-3.50.2-9.41.1
SUSE Linux Enterprise Server 12 SP5-LTSS:libsqlite3-0-32bit-3.50.2-9.41.1
SUSE Linux Enterprise Server 12 SP5-LTSS:sqlite3-3.50.2-9.41.1
SUSE Linux Enterprise Server 12 SP5-LTSS:sqlite3-devel-3.50.2-9.41.1
Ссылки
- CVE-2025-6965
- SUSE Bug 1246597