CVE-2025-29088
EUVD-2025-1069810.04.2025, 14:15
In SQLite 3.49.0 before 3.49.1, certain argument values to sqlite3_db_config (in the C-language API) can cause a denial of service (application crash). An sz*nBig multiplication is not cast to a 64-bit integer, and consequently some memory allocations may be incorrect.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| sqlite | sqlite | 3.49.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| sqlite |
| ||||||||||||||||||||
| sqlite3 |
|
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| libsqlite3-0 |
| ||||||||||||||||||||||||||||||
| libsqlite3-0-32bit |
| ||||||||||||||||||||||||||||||
| sqlite3 |
| ||||||||||||||||||||||||||||||
| sqlite3-devel |
| ||||||||||||||||||||||||||||||
| sqlite3-tcl |
|
Amazon Linux Releases
Amazon Package | |||
|---|---|---|---|
| firefox |
| ||
| firefox-debuginfo |
| ||
| firefox-debugsource |
| ||
| nodejs22 |
| ||
| nodejs22-debuginfo |
| ||
| nodejs22-debugsource |
| ||
| nodejs22-devel |
| ||
| nodejs22-docs |
| ||
| nodejs22-full-i18n |
| ||
| nodejs22-libs |
| ||
| nodejs22-libs-debuginfo |
| ||
| nodejs22-npm |
| ||
| thunderbird |
| ||
| thunderbird-debuginfo |
| ||
| v8-12.4-devel |
|