UbuntuUpdates.org

Package "libsqlite3-0"

Name: libsqlite3-0

Description:

SQLite 3 shared library

Latest version: 3.46.1-3ubuntu0.2
Release: plucky (25.04)
Level: updates
Repository: main
Head package: sqlite3
Homepage: https://www.sqlite.org/

Links


Download "libsqlite3-0"


Other versions of "libsqlite3-0" in Plucky

Repository Area Version
base main 3.46.1-3
security main 3.46.1-3ubuntu0.2

Changelog

Version: 3.46.1-3ubuntu0.2 2025-07-28 22:07:45 UTC

  sqlite3 (3.46.1-3ubuntu0.2) plucky-security; urgency=medium

  * SECURITY UPDATE: Memory corruption via number of aggregate terms
    - debian/patches/CVE-2025-6965.patch: raise an error right away if the
      number of aggregate terms in a query exceeds the maximum number of
      columns in src/expr.c, src/sqliteInt.h.
    - CVE-2025-6965

 -- Marc Deslauriers <email address hidden> Fri, 18 Jul 2025 10:53:51 -0400

Source diff to previous version
CVE-2025-6965 There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This

Version: 3.46.1-3ubuntu0.1 2025-05-22 21:07:51 UTC

  sqlite3 (3.46.1-3ubuntu0.1) plucky-security; urgency=medium

  * SECURITY UPDATE: DoS via sqlite3_db_config arguments
    - debian/patches/CVE-2025-29088.patch: harden SQLITE_DBCONFIG_LOOKASIDE
      interface against misuse in src/main.c, src/sqlite.h.in.
    - CVE-2025-29088

 -- Marc Deslauriers <email address hidden> Tue, 29 Apr 2025 11:33:20 -0400

CVE-2025-29088 In SQLite 3.49.0 before 3.49.1, certain argument values to sqlite3_db_config (in the C-language API) can cause a denial of service (application crash



About   -   Send Feedback to @ubuntu_updates