Описание
Security update for sqlite3
This update for sqlite3 fixes the following issues:
- Update to v3.51.2:
- CVE-2025-7709: Fixed an integer overflow in the FTS5 extension. (bsc#1254670)
Список пакетов
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
libsqlite3-0-3.51.2-9.44.1
libsqlite3-0-32bit-3.51.2-9.44.1
sqlite3-3.51.2-9.44.1
sqlite3-devel-3.51.2-9.44.1
sqlite3-tcl-3.51.2-9.44.1
Ссылки
- Link for SUSE-SU-2026:0395-1
- E-Mail link for SUSE-SU-2026:0395-1
- SUSE Security Ratings
- SUSE Bug 1248586
- SUSE Bug 1254670
- SUSE CVE CVE-2025-7709 page
Описание
An integer overflow exists in the FTS5 https://sqlite.org/fts5.html extension. It occurs when the size of an array of tombstone pointers is calculated and truncated into a 32-bit integer. A pointer to partially controlled data can then be written out of bounds.
Затронутые продукты
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsqlite3-0-3.51.2-9.44.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsqlite3-0-32bit-3.51.2-9.44.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:sqlite3-3.51.2-9.44.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:sqlite3-devel-3.51.2-9.44.1
Ссылки
- CVE-2025-7709
- SUSE Bug 1254670