4786 matches found
CVE-2025-6965
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above...
AZL-65327 CVE-2025-6965 affecting package sqlite for versions less than 3.44.0-2
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above...
AZL-65507 CVE-2025-6965 affecting package sqlite for versions less than 3.39.2-4
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above...
ALPINE-CVE-2025-6965
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above...
UBUNTU-CVE-2025-6965
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above...
CVE-2025-6965
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above...
CVE-2025-6965 Integer Truncation on SQLite
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above...
CVE-2025-6965
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above...
CVE-2025-6965 Integer Truncation on SQLite
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above...
CVE-2025-6965
CVE-2025-6965 is an SQLite vulnerability: in versions prior to 3.50.2, the number of aggregate terms could exceed the available columns, leading to memory corruption. The provided documents consistently cite this issue and recommend upgrading SQLite to 3.50.2 or later as the fix. Other connected ...
sqlite -- Integer Truncation on SQLite
[email protected] reports: There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue...
SQLite < 3.50.3 -- CWE-190 Integer Overflow or Wraparound in FTS5 module
https://github.com/google/security-research/security/advisories/GHSA-v2c8-vqqp-hv3g reports: An integer overflow exists in the FTS5 https://sqlite.org/fts5.html extension. It occurs when the size of an array of tombstone pointers is calculated and truncated into a 32-bit integer. A pointer to...
PT-2025-29558
Vulnerability Summary Name of the Vulnerable Software and Affected Versions: SQLite versions prior to 3.50.2 Description SQLite versions before 3.50.2 are vulnerable to a memory corruption issue due to an integer overflow that can occur when the number of aggregate terms exceeds the number of...
SQLite 安全漏洞
SQLite is a lightweight database from the SQLite open source, a relational database management system that adheres to ACID. A security vulnerability exists in SQLite versions prior to 3.50.2 that stems from the number of aggregated items may exceed the number of available columns, which may resul...
matrix-sdk-sqlite: SQL injection vulnerability in `SqliteEventCacheStore::find_event_with_relations`
The SqliteEventCacheStore::findeventwithrelations function constructs SQL queries using format! with unescaped input, allowing an attacker to inject arbitrary SQL. This results in a SQL injection vulnerability...
CVE-2025-53549 Matrix Rust SDK allows SQL injection in the EventCache implementation
The Matrix Rust SDK is a collection of libraries that make it easier to build Matrix clients in Rust. An SQL injection vulnerability in the EventCache::findeventwithrelations method of matrix-sdk 0.11 and 0.12 allows malicious room members to execute arbitrary SQL commands in Matrix clients that...
SQLite DoS Vulnerability 3.49.0 < 3.49.1
The version of SQLite installed on the remote host is prior to 3.49.1 and is, therefore, affected by dos vulnerability where a certain argument values to sqlite3dbconfig in the C-language API can cause a denial of service application crash. An sznBig multiplication is not cast to a 64-bit integer...
Tenable Security Center Multiple Vulnerabilities (TNS-2025-12)
According to its self-reported version, the Tenable Security Center running on the remote host is version 6.5.1. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2025-12 advisory. - In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concatws SQL function can cause...
[R1] Stand-alone Security Patches Available for Tenable Security Center versions 6.4.0, 6.4.5 and 6.5.1: SC-202505.1 + SC-202506.1
R1 Stand-alone Security Patches Available for Tenable Security Center versions 6.4.0, 6.4.5 and 6.5.1: SC-202505.1 + SC-202506.1 Arnie Cabral Mon, 06/30/2025 - 11:41 Security Center leverages third-party software to help provide underlying functionality. Several of the third-party components...
GHSA-VH5J-5FHQ-9XWG Taylor has race condition in /get-patch that allows purchase token replay
Hi team, I was looking at the recent fix and you limited the exploitability of race conditions but unfortunately it is still possible to exploit the issue since two requests happening at the exact same time will still go through. You should be able to completely fix the race conditions by...