Overview

File _patchinfo of Package patchinfo.38348

<patchinfo incident="38348">
  <issue tracker="jsc" id="SLE-16032"/>
  <issue tracker="cve" id="2025-29087"/>
  <issue tracker="cve" id="2025-29088"/>
  <issue tracker="cve" id="2025-3277"/>
  <issue tracker="bnc" id="1241189">VUL-0: CVE-2025-3277: sqlite2,sqlite3: integer overflow triggered in concat_ws() function can lead to a heap buffer overflow of size ~4GB</issue>
  <issue tracker="bnc" id="1241078">VUL-0: CVE-2025-29088: sqlite2,sqlite3: integer overflow through the SQLITE_DBCONFIG_LOOKASIDE component.</issue>
  <issue tracker="bnc" id="1241020">VUL-0: CVE-2025-29087: sqlite3: Integer Overflow in SQLite concat Function</issue>
  <packager>rmax</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for sqlite3</summary>
  <description>This update for sqlite3 fixes the following issues:

- CVE-2025-29087,CVE-2025-3277: Fixed integer overflow in sqlite concat function (bsc#1241020)
- CVE-2025-29088: Fixed integer overflow through the SQLITE_DBCONFIG_LOOKASIDE component (bsc#1241078)

Other fixes:

- Updated to version 3.49.1 from Factory (jsc#SLE-16032)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places