Alerts This Week
Warning Icon 1 815
Alerts This Week
Warning Icon 1 815

SUSE sqlite3 Important Memory Corruption Buffer Overflow Vuln 2026-2527-1

suse
Calendar Grey June 23, 2026
Dist Suse Esm H88
SUSE updates sqlite3 for important fixes addressing memory and buffer overflow risks that enhance system stability.
An update that solves two vulnerabilities can now be installed.

Summary

## This update for sqlite3 fixes the following issues Update to 3.53.2: * CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). * CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full- text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2026-2527=1

Topics%20covered

Topics Covered

security advisory buffer overflow SuSE memory corruption important sql

References

* bsc#1268012

* bsc#1268013

Cross-

* CVE-2026-11822

* CVE-2026-11824

CVSS scores:

* CVE-2026-11822 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2026-11822 ( NVD ): 8.5

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

* CVE-2026-11822 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2026-11824 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2026-11824 ( NVD ): 8.5

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2026:2527-1
Release Date: 2026-06-23T09:05:06Z
Rating: important

Topics%20covered

Topics Covered

security advisory buffer overflow SuSE memory corruption important sql

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here