Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SUSE Linux Micro 6.0: 2025:20323-1 Moderate: sqlite3 Memory Fix

suse
Calendar Grey May 28, 2025
Dist Suse Esm H88
A security patch for sqlite3 resolves memory issues and optimizes settings. Ensure you upgrade now for better efficiency.
* bsc#1241020 * bsc#1241078 Cross-References: * CVE-2025-29087

Summary

## This update for sqlite3 fixes the following issues: * Update to release 3.49.1: * Improve portability of makefiles and configure scripts. * CVE-2025-29087, bsc#1241020: Fix a bug in the concat_ws() function, introduced in version 3.44.0, that could lead to a memory error if the separator string is very large (hundreds of megabytes). * CVE-2025-29088, bsc#1241078: Enhanced the SQLITE_DBCONFIG_LOOKASIDE interface to make it more robust against misuse. * Update to release 3.49.0: * Enhancements to the query planner: * Improve the query-time index optimization so that it works on WITHOUT ROWID tables. * Better query plans for large star-query joins. This fixes three different performance regressions that were reported on the SQLite Forum.

Topics%20covered

Topics Covered

security advisory moderate software update SUSE Linux memory error sqlite3

References

* bsc#1241020

* bsc#1241078

Cross-

* CVE-2025-29087

* CVE-2025-29088

CVSS scores:

* CVE-2025-29087 ( SUSE ): 5.9

CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N

* CVE-2025-29087 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L

* CVE-2025-29087 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2025-29087 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

* CVE-2025-29087 ( NVD ): 3.2 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L

* CVE-2025-29088 ( SUSE ): 6.8

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

* CVE-2025-29088 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

* CVE-2025-29088 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Announcement ID: SUSE-SU-2025:20323-1
Release Date: May 16, 2025, 12:51 p.m.
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate software update SUSE Linux memory error sqlite3

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here