[ubuntu/oracular-security] sqlite3 3.46.1-1ubuntu0.2 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Thu May 22 16:41:56 UTC 2025
sqlite3 (3.46.1-1ubuntu0.2) oracular-security; urgency=medium
* SECURITY UPDATE: integer overflow through the concat function
- debian/patches/CVE-2025-29087_3277.patch: add a typecast to avoid
32-bit integer overflow in src/func.c.
- CVE-2025-29087
- CVE-2025-3277
* SECURITY UPDATE: DoS via sqlite3_db_config arguments
- debian/patches/CVE-2025-29088.patch: harden SQLITE_DBCONFIG_LOOKASIDE
interface against misuse in src/main.c, src/sqlite.h.in.
- CVE-2025-29088
Date: 2025-04-29 17:10:10.704518+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/sqlite3/3.46.1-1ubuntu0.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the oracular-changes
mailing list