SUSE-SU-2025:20561-1
- Source
- https://www.suse.com/support/update/announcement/2025/suse-su-202520561-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:20561-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/SUSE-SU-2025:20561-1
- Upstream
- Related
- Published
- 2025-08-20T11:36:54Z
- Modified
- 2026-03-12T02:04:43.908620Z
- Summary
- Security update for sqlite3
- Details
-
This update for sqlite3 fixes the following issues:
Update to 3.50.2:
- Fix the concat_ws() SQL function so that it includes empty strings in the concatenation.
- Avoid writing frames with no checksums into the wal file if a savepoint is rolled back after dirty pages have already been spilled into the wal file.
- Fix the Bitvec object to avoid stack overflow when the database is within 60 pages of its maximum size.
- Fix a problem with UPDATEs on fts5 tables that contain BLOB values.
- Fix an issue with transitive IS constraints on a RIGHT JOIN.
- CVE-2025-6965: Fixed Integer Truncation in SQLite (bsc#1246597)
- Ensure that sqlite3setlktimeout() holds the database mutex.
Update to 3.50 (3.50.1):
- Improved handling and robust output of control characters
- sqlite3_rsync no longer requires WAL mode and needs less bandwidth
- Bug fixes and optimized JSON handling
- Performance optimizations and developer visible fixes
Update to release 3.49.2:
- Fix a bug in the NOT NULL optimization of version 3.40.0 that can lead to a memory error if abused.
- Fix the count-of-view optimization so that it does not give an incorrect answer for a DISTINCT query.
- Fix a possible incorrect answer that can result if a UNIQUE constraint of a table contains the PRIMARY KEY column and that UNIQUE constraint is used by an IN operator.
- Fix obscure problems with the generate_series() extension function.
- Incremental improvements to the configure/make.
Add subpackage for the lemon parser generator.
- References