Search for packages
Package details: pkg:deb/debian/sqlite3@3.46.1-7
purl pkg:deb/debian/sqlite3@3.46.1-7
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (3)
Vulnerability Summary Aliases
VCID-macf-2xgx-6yfv There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above. CVE-2025-6965
VCID-uh8c-3dwn-5bce In SQLite 3.49.0 before 3.49.1, certain argument values to sqlite3_db_config (in the C-language API) can cause a denial of service (application crash). An sz*nBig multiplication is not cast to a 64-bit integer, and consequently some memory allocations may be incorrect. CVE-2025-29088
VCID-vrnh-msaa-67a1 An integer overflow in the sqlite3KeyInfoFromExprList function in SQLite versions 3.39.2 through 3.41.1 allows an attacker with the ability to execute arbitrary SQL statements to cause a denial of service or disclose sensitive information from process memory via a crafted SELECT statement with a large number of expressions in the ORDER BY clause. CVE-2025-7458

Date Actor Action Vulnerability Source VulnerableCode Version
2025-08-01T13:21:49.875037+00:00 Debian Importer Fixing VCID-macf-2xgx-6yfv https://security-tracker.debian.org/tracker/data/json 37.0.0
2025-08-01T12:57:21.918728+00:00 Debian Importer Fixing VCID-uh8c-3dwn-5bce https://security-tracker.debian.org/tracker/data/json 37.0.0
2025-08-01T12:14:27.436201+00:00 Debian Importer Fixing VCID-vrnh-msaa-67a1 https://security-tracker.debian.org/tracker/data/json 37.0.0