Количество 11
Количество 11
CVE-2025-29087
In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concat_ws() SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string (e.g., 2MB or more), an integer overflow occurs in calculating the size of the result buffer, and thus malloc may not allocate enough memory.
CVE-2025-29087
In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concat_ws() SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string (e.g., 2MB or more), an integer overflow occurs in calculating the size of the result buffer, and thus malloc may not allocate enough memory.
CVE-2025-29087
In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concat_ws() SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string (e.g., 2MB or more), an integer overflow occurs in calculating the size of the result buffer, and thus malloc may not allocate enough memory.
CVE-2025-29087
In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concat_ws() SQL fun ...
GHSA-6j35-rq42-fv6v
Sqlite 3.49.0 is susceptible to integer overflow through the concat function.
BDU:2025-06404
Уязвимость функции SQL concat_ws() системы управления базами данных SQLite, позволяющая нарушителю вызвать отказ в обслуживании
SUSE-SU-2025:1456-1
Security update for sqlite3
SUSE-SU-2025:1455-1
Security update for sqlite3
SUSE-SU-2025:01456-2
Security update for sqlite3
SUSE-SU-2025:01456-1
Security update for sqlite3
SUSE-SU-2025:01455-1
Security update for sqlite3
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-29087 In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concat_ws() SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string (e.g., 2MB or more), an integer overflow occurs in calculating the size of the result buffer, and thus malloc may not allocate enough memory. | CVSS3: 3.2 | 0% Низкий | 5 месяцев назад |
 | CVE-2025-29087 In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concat_ws() SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string (e.g., 2MB or more), an integer overflow occurs in calculating the size of the result buffer, and thus malloc may not allocate enough memory. | CVSS3: 5.5 | 0% Низкий | 5 месяцев назад |
 | CVE-2025-29087 In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concat_ws() SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string (e.g., 2MB or more), an integer overflow occurs in calculating the size of the result buffer, and thus malloc may not allocate enough memory. | CVSS3: 3.2 | 0% Низкий | 5 месяцев назад |
| CVE-2025-29087 In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concat_ws() SQL fun ... | CVSS3: 3.2 | 0% Низкий | 5 месяцев назад |
| GHSA-6j35-rq42-fv6v Sqlite 3.49.0 is susceptible to integer overflow through the concat function. | CVSS3: 9.8 | 0% Низкий | 5 месяцев назад |
 | BDU:2025-06404 Уязвимость функции SQL concat_ws() системы управления базами данных SQLite, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 0% Низкий | 7 месяцев назад |
 | SUSE-SU-2025:1456-1 Security update for sqlite3 | 4 месяца назад | ||
| SUSE-SU-2025:1455-1 Security update for sqlite3 | 4 месяца назад | ||
| SUSE-SU-2025:01456-2 Security update for sqlite3 | 3 месяца назад | ||
| SUSE-SU-2025:01456-1 Security update for sqlite3 | 4 месяца назад | ||
| SUSE-SU-2025:01455-1 Security update for sqlite3 | 3 месяца назад |
Уязвимостей на страницу