[ubuntu/noble-security] sqlite3 3.45.1-1ubuntu2.3 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Thu May 22 16:41:57 UTC 2025
sqlite3 (3.45.1-1ubuntu2.3) noble-security; urgency=medium
* SECURITY UPDATE: integer overflow through the concat function
- debian/patches/CVE-2025-29087_3277.patch: add a typecast to avoid
32-bit integer overflow in src/func.c.
- CVE-2025-29087
- CVE-2025-3277
* SECURITY UPDATE: DoS via sqlite3_db_config arguments
- debian/patches/CVE-2025-29088.patch: harden SQLITE_DBCONFIG_LOOKASIDE
interface against misuse in src/main.c, src/sqlite.h.in.
- CVE-2025-29088
Date: 2025-04-29 17:32:10.433322+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/sqlite3/3.45.1-1ubuntu2.3
-------------- next part --------------
Sorry, changesfile not available.
More information about the noble-changes
mailing list