Explore top 10 tips to secure your open-source projects now. Read More
×An update that solves 2 vulnerabilities and has 2 bug fixes can now be installed.. openSUSE security update: security update for sqlite3 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:21090-1 Rating: important References: * bsc#1268012 * bsc#1268013 Cross-References: * CVE-2026-11822 * CVE-2026-11824 CVSS scores: * CVE-2026-11822 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11824 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves 2 vulnerabilities and has 2 bug fixes can now be installed. Description: This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). - CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full-text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). Changes: * Add the Query Result Formatter (QRF) library for formatting the results of SQL queries for human readability on a fixed-pitch font screen. * Enhance ALTER TABLE to permit adding and removing NOT NULL and CHECK constraints. * The REINDEX EXPRESSIONS statement rebuilds expression indexes. * The body of TEMP triggers may now modify and/or query tables in the main schema. * Enhance VACUUM INTO so that if a URI filename is used as the target and that filename has a reserve=N query parameter with N between 0 and 255, then the reserve amount for the generated database copy is set to N. * New SQL functions json_array_insert() and jsonb_array_insert(). * Renovations to the CLI. * New C-language interfaces: sqlite3_str_truncate(), sqlite3_str_free(), sqlite3_carray_bind_v2(). * Add the SQLITE_PREPARE_FROM_DDLoption to sqlite3_prepare_v3(). * Added the SQLITE_UTF8_ZT constant which can be used as the encoding parameter to sqlite3_result_text64() or sqlite3_bind_text64() to indicate that the value is UTF-8 encoded and zero terminated. * The SQLITE_LIMIT_PARSER_DEPTH option is added to sqlite3_limit(). * The SQLITE_DBCONFIG_FP_DIGITS option is added to sqlite3_db_config(). * Query planner improvements. * Add new interfaces to the session extension that enable an application to add changes one at a time to the sqlite3_changegroup object. * Improvements to floating-point text conversions. * Added the self-healing index feature to deal with the stale expression index problem. * Add the "-p|--port" option to sqlite3_rsync. * Add the "opfs-wl" VFS, functionally identical to the "opfs" VFS but using Web Locks for locking, which can promise fairer lock sharing than the "opfs" bespoke protocol can. "opfs-wl" requires Atomics.waitAsync(), so requires newer browsers than "opfs" does. * Fixes for problems in 3.53.0 and 3.53.1 reported by users. * See the check-in timeline for details: https://sqlite.org/src/timeline?from=version-3.53.0&to=version-3.53.2 * https://sqlite.org/releaselog/3_53_0.html Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-955=1 Package List: - openSUSE Leap 16.0: lemon-3.53.2-160000.1.1 libsqlite3-0-3.53.2-160000.1.1 libsqlite3-0-x86-64-v3-3.53.2-160000.1.1 sqlite3-3.53.2-160000.1.1 sqlite3-devel-3.53.2-160000.1.1 sqlite3-doc-3.53.2-160000.1.1 sqlite3-tcl-3.53.2-160000.1.1 References: * https://www.suse.com/security/cve/CVE-2026-11822.html * https://www.suse.com/security/cve/CVE-2026-11824.html . openSUSE's Important sqlite3 update addresses two security flaws and enhances functionality.. openSUSE update, sqlite3security, buffer overflow, memory corruption, software patch. . Severity: Important. LinuxSecurity.com Team
Several security issues were fixed in SQLite.. ========================================================================== Ubuntu Security Notice USN-8480-1 June 29, 2026 sqlite3 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS - Ubuntu 25.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS Summary: Several security issues were fixed in SQLite. Software Description: - sqlite3: C library that implements an SQL database engine Details: It was discovered that SQLite incorrectly handled certain memory operations in the FTS5 full-text search extension. An attacker could use this issue to cause SQLite to crash, resulting in a denial of service, or possibly execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS libsqlite3-0 3.46.1-9ubuntu0.1 Ubuntu 25.10 libsqlite3-0 3.46.1-8ubuntu0.1 Ubuntu 24.04 LTS libsqlite3-0 3.45.1-1ubuntu2.6 Ubuntu 22.04 LTS libsqlite3-0 3.37.2-2ubuntu0.6 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8480-1 CVE-2026-11822, CVE-2026-11824 Package Information: https://launchpad.net/ubuntu/+source/sqlite3/3.46.1-9ubuntu0.1 https://launchpad.net/ubuntu/+source/sqlite3/3.46.1-8ubuntu0.1 https://launchpad.net/ubuntu/+source/sqlite3/3.45.1-1ubuntu2.6 https://launchpad.net/ubuntu/+source/sqlite3/3.37.2-2ubuntu0.6 . Several security issues addressed in SQLite may lead to crashes or unauthorized code execution. Update required for Ubuntu.. SQLite Security Update, Denial Of Service, Ubuntu Security Advisory. . Severity: Important. LinuxSecurity.com Team
An update that solves two vulnerabilities can now be installed.. # Security update for sqlite3 Announcement ID: SUSE-SU-2026:2528-1 Release Date: 2026-06-23T09:07:01Z Rating: important References: * bsc#1268012 * bsc#1268013 Cross-References: * CVE-2026-11822 * CVE-2026-11824 CVSS scores: * CVE-2026-11822 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11822 ( NVD ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-11822 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11824 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11824 ( NVD ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-11824 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSELinux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves two vulnerabilities can now be installed. ## Description: This update for sqlite3 fixes the following issues Update to 3.53.2: * CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). * CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full- text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2528=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2528=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2528=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2528=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2528=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2528=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2528=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2528=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2528=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2528=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2528=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2528=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2528=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2528=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2528=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-2528=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-devel-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * libsqlite3-0-32bit-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-32bit-3.53.2-150000.3.42.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-devel-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * libsqlite3-0-32bit-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-32bit-3.53.2-150000.3.42.1 * SUSE Linux Enterprise High PerformanceComputing LTSS 15 SP4 (aarch64 x86_64) * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-devel-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * libsqlite3-0-32bit-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-32bit-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * sqlite3-tcl-debuginfo-3.53.2-150000.3.42.1 * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-devel-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64) * libsqlite3-0-32bit-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-32bit-3.53.2-150000.3.42.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * sqlite3-tcl-debuginfo-3.53.2-150000.3.42.1 * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-devel-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-3.53.2-150000.3.42.1 *sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (x86_64) * libsqlite3-0-32bit-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-32bit-3.53.2-150000.3.42.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * sqlite3-tcl-debuginfo-3.53.2-150000.3.42.1 * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-devel-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (x86_64) * libsqlite3-0-32bit-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-32bit-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * sqlite3-tcl-debuginfo-3.53.2-150000.3.42.1 * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * sqlite3-tcl-debuginfo-3.53.2-150000.3.42.1 * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * sqlite3-tcl-debuginfo-3.53.2-150000.3.42.1 * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-devel-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (x86_64) *libsqlite3-0-32bit-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-32bit-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * sqlite3-tcl-debuginfo-3.53.2-150000.3.42.1 * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-devel-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64) * libsqlite3-0-32bit-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-32bit-3.53.2-150000.3.42.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * sqlite3-tcl-debuginfo-3.53.2-150000.3.42.1 * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-devel-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * Basesystem Module 15-SP7 (x86_64) * libsqlite3-0-32bit-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-32bit-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * sqlite3-tcl-debuginfo-3.53.2-150000.3.42.1 * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-devel-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64) * libsqlite3-0-32bit-debuginfo-3.53.2-150000.3.42.1 *libsqlite3-0-32bit-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * sqlite3-tcl-debuginfo-3.53.2-150000.3.42.1 * sqlite3-debugsource-3.53.2-150000.3.42.1 * libsqlite3-0-3.53.2-150000.3.42.1 * sqlite3-devel-3.53.2-150000.3.42.1 * sqlite3-tcl-3.53.2-150000.3.42.1 * sqlite3-3.53.2-150000.3.42.1 * sqlite3-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-debuginfo-3.53.2-150000.3.42.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (x86_64) * libsqlite3-0-32bit-debuginfo-3.53.2-150000.3.42.1 * libsqlite3-0-32bit-3.53.2-150000.3.42.1 ## References: * https://www.suse.com/security/cve/CVE-2026-11822.html * https://www.suse.com/security/cve/CVE-2026-11824.html * https://bugzilla.suse.com/show_bug.cgi?id=1268012 * https://bugzilla.suse.com/show_bug.cgi?id=1268013 . Explore the SUSE sqlite3 update addressing important memory corruption and buffer overflow issues, enhancing security.. sqlite3 update SUSE memory corruption buffer overflow. . Severity: Important. LinuxSecurity.com Team
An update that solves two vulnerabilities can now be installed.. # Security update for sqlite3 Announcement ID: SUSE-SU-2026:22166-1 Release Date: 2026-06-18T21:01:36Z Rating: important References: * bsc#1268012 * bsc#1268013 Cross-References: * CVE-2026-11822 * CVE-2026-11824 CVSS scores: * CVE-2026-11822 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11822 ( NVD ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-11822 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11824 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11824 ( NVD ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-11824 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for sqlite3 fixes the following issues Update to 3.53.2: * CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). * CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full- text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). Changes: * Add the Query Result Formatter (QRF) library for formatting the results of SQL queries for human readability on a fixed-pitch font screen. * Enhance ALTER TABLE to permit adding and removing NOT NULL and CHECK constraints. * The REINDEX EXPRESSIONS statement rebuilds expressionindexes. * The body of TEMP triggers may now modify and/or query tables in the main schema. * Enhance VACUUM INTO so that if a URI filename is used as the target and that filename has a reserve=N query parameter with N between 0 and 255, then the reserve amount for the generated database copy is set to N. * New SQL functions json_array_insert() and jsonb_array_insert(). * Renovations to the CLI. * New C-language interfaces: sqlite3_str_truncate(), sqlite3_str_free(), sqlite3_carray_bind_v2(). * Add the SQLITE_PREPARE_FROM_DDL option to sqlite3_prepare_v3(). * Added the SQLITE_UTF8_ZT constant which can be used as the encoding parameter to sqlite3_result_text64() or sqlite3_bind_text64() to indicate that the value is UTF-8 encoded and zero terminated. * The SQLITE_LIMIT_PARSER_DEPTH option is added to sqlite3_limit(). * The SQLITE_DBCONFIG_FP_DIGITS option is added to sqlite3_db_config(). * Query planner improvements. * Add new interfaces to the session extension that enable an application to add changes one at a time to the sqlite3_changegroup object. * Improvements to floating-point text conversions. * Added the self-healing index feature to deal with the stale expression index problem. * Add the "-p|--port" option to sqlite3_rsync. * Add the "opfs-wl" VFS, functionally identical to the "opfs" VFS but using Web Locks for locking, which can promise fairer lock sharing than the "opfs" bespoke protocol can. "opfs-wl" requires Atomics.waitAsync(), so requires newer browsers than "opfs" does. * Fixes for problems in 3.53.0 and 3.53.1 reported by users. * See the check-in timeline for details: https://sqlite.org/src/timeline?from=version-3.53.0&to=version-3.53.2 * https://sqlite.org/releaselog/3_53_0.html ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE LinuxEnterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-955=1 * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-955=1 ## Package List: * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * sqlite3-debuginfo-3.53.2-160000.1.1 * sqlite3-tcl-debuginfo-3.53.2-160000.1.1 * sqlite3-devel-3.53.2-160000.1.1 * sqlite3-debugsource-3.53.2-160000.1.1 * sqlite3-tcl-3.53.2-160000.1.1 * sqlite3-3.53.2-160000.1.1 * libsqlite3-0-3.53.2-160000.1.1 * libsqlite3-0-debuginfo-3.53.2-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (x86_64) * libsqlite3-0-x86-64-v3-debuginfo-3.53.2-160000.1.1 * libsqlite3-0-x86-64-v3-3.53.2-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * sqlite3-doc-3.53.2-160000.1.1 * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * sqlite3-debuginfo-3.53.2-160000.1.1 * sqlite3-tcl-debuginfo-3.53.2-160000.1.1 * sqlite3-devel-3.53.2-160000.1.1 * sqlite3-debugsource-3.53.2-160000.1.1 * sqlite3-tcl-3.53.2-160000.1.1 * sqlite3-3.53.2-160000.1.1 * libsqlite3-0-3.53.2-160000.1.1 * libsqlite3-0-debuginfo-3.53.2-160000.1.1 * SUSE Linux Enterprise Server 16.0 (noarch) * sqlite3-doc-3.53.2-160000.1.1 * SUSE Linux Enterprise Server 16.0 (x86_64) * libsqlite3-0-x86-64-v3-debuginfo-3.53.2-160000.1.1 * libsqlite3-0-x86-64-v3-3.53.2-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-11822.html * https://www.suse.com/security/cve/CVE-2026-11824.html * https://bugzilla.suse.com/show_bug.cgi?id=1268012 * https://bugzilla.suse.com/show_bug.cgi?id=1268013 . A vital security update for sqlite3 addresses critical vulnerabilities in SUSE Linux 16.0. Install promptly for protection.. SUSE Security Update, sqlite3 Patch, Important Security Fix. . Severity: Important. LinuxSecurity.com Team
An update that solves two vulnerabilities can now be installed.. # Security update for sqlite3 Announcement ID: SUSE-SU-2026:22218-1 Release Date: 2026-06-18T21:09:27Z Rating: important References: * bsc#1268012 * bsc#1268013 Cross-References: * CVE-2026-11822 * CVE-2026-11824 CVSS scores: * CVE-2026-11822 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11822 ( NVD ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-11822 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11824 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11824 ( NVD ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-11824 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.2 An update that solves two vulnerabilities can now be installed. ## Description: This update for sqlite3 fixes the following issues Update to 3.53.2: * CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). * CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full- text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). Changes: * Add the Query Result Formatter (QRF) library for formatting the results of SQL queries for human readability on a fixed-pitch font screen. * Enhance ALTER TABLE to permit adding and removing NOT NULL and CHECK constraints. * The REINDEX EXPRESSIONS statement rebuilds expression indexes. * The body of TEMP triggers may now modify and/or query tables inthe main schema. * Enhance VACUUM INTO so that if a URI filename is used as the target and that filename has a reserve=N query parameter with N between 0 and 255, then the reserve amount for the generated database copy is set to N. * New SQL functions json_array_insert() and jsonb_array_insert(). * Renovations to the CLI. * New C-language interfaces: sqlite3_str_truncate(), sqlite3_str_free(), sqlite3_carray_bind_v2(). * Add the SQLITE_PREPARE_FROM_DDL option to sqlite3_prepare_v3(). * Added the SQLITE_UTF8_ZT constant which can be used as the encoding parameter to sqlite3_result_text64() or sqlite3_bind_text64() to indicate that the value is UTF-8 encoded and zero terminated. * The SQLITE_LIMIT_PARSER_DEPTH option is added to sqlite3_limit(). * The SQLITE_DBCONFIG_FP_DIGITS option is added to sqlite3_db_config(). * Query planner improvements. * Add new interfaces to the session extension that enable an application to add changes one at a time to the sqlite3_changegroup object. * Improvements to floating-point text conversions. * Added the self-healing index feature to deal with the stale expression index problem. * Add the "-p|--port" option to sqlite3_rsync. * Add the "opfs-wl" VFS, functionally identical to the "opfs" VFS but using Web Locks for locking, which can promise fairer lock sharing than the "opfs" bespoke protocol can. "opfs-wl" requires Atomics.waitAsync(), so requires newer browsers than "opfs" does. * Fixes for problems in 3.53.0 and 3.53.1 reported by users. * See the check-in timeline for details: https://sqlite.org/src/timeline?from=version-3.53.0&to=version-3.53.2 * https://sqlite.org/releaselog/3_53_0.html ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.2 zypper in -t patch SUSE-SL-Micro-6.2-955=1 ## Package List: *SUSE Linux Micro 6.2 (aarch64 ppc64le s390x x86_64) * sqlite3-debuginfo-3.53.2-160000.1.1 * sqlite3-debugsource-3.53.2-160000.1.1 * libsqlite3-0-debuginfo-3.53.2-160000.1.1 * libsqlite3-0-3.53.2-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-11822.html * https://www.suse.com/security/cve/CVE-2026-11824.html * https://bugzilla.suse.com/show_bug.cgi?id=1268012 * https://bugzilla.suse.com/show_bug.cgi?id=1268013 . A crucial SUSE update for sqlite3 addresses two major issues, enhancing system stability and security features.. SUSE sqlite3 update security important. . Severity: Important. LinuxSecurity.com Team
An update that solves two vulnerabilities can now be installed.. # Security update for sqlite3 Announcement ID: SUSE-SU-2026:22134-1 Release Date: 2026-06-12T09:23:25Z Rating: important References: * bsc#1268012 * bsc#1268013 Cross-References: * CVE-2026-11822 * CVE-2026-11824 CVSS scores: * CVE-2026-11822 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11822 ( NVD ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-11822 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11824 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11824 ( NVD ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-11824 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves two vulnerabilities can now be installed. ## Description: This update for sqlite3 fixes the following issues Update to 3.53.2: * CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). * CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full- text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). Changes: * Add the Query Result Formatter (QRF) library for formatting the results of SQL queries for human readability on a fixed-pitch font screen. * Enhance ALTER TABLE to permit adding and removing NOT NULL and CHECK constraints. * The REINDEX EXPRESSIONS statement rebuilds expression indexes. * The body of TEMP triggers may now modify and/or query tables inthe main schema. * Enhance VACUUM INTO so that if a URI filename is used as the target and that filename has a reserve=N query parameter with N between 0 and 255, then the reserve amount for the generated database copy is set to N. * New SQL functions json_array_insert() and jsonb_array_insert(). * Renovations to the CLI. * New C-language interfaces: sqlite3_str_truncate(), sqlite3_str_free(), sqlite3_carray_bind_v2(). * Add the SQLITE_PREPARE_FROM_DDL option to sqlite3_prepare_v3(). * Added the SQLITE_UTF8_ZT constant which can be used as the encoding parameter to sqlite3_result_text64() or sqlite3_bind_text64() to indicate that the value is UTF-8 encoded and zero terminated. * The SQLITE_LIMIT_PARSER_DEPTH option is added to sqlite3_limit(). * The SQLITE_DBCONFIG_FP_DIGITS option is added to sqlite3_db_config(). * Query planner improvements. * Add new interfaces to the session extension that enable an application to add changes one at a time to the sqlite3_changegroup object. * Improvements to floating-point text conversions. * Added the self-healing index feature to deal with the stale expression index problem. * Add the "-p|--port" option to sqlite3_rsync. * Add the "opfs-wl" VFS, functionally identical to the "opfs" VFS but using Web Locks for locking, which can promise fairer lock sharing than the "opfs" bespoke protocol can. "opfs-wl" requires Atomics.waitAsync(), so requires newer browsers than "opfs" does. * Fixes for problems in 3.53.0 and 3.53.1 reported by users. * See the check-in timeline for details: https://sqlite.org/src/timeline?from=version-3.53.0&to=version-3.53.2 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-578=1 ## Package List: * SUSE Linux Micro 6.1 (s390x) *sqlite3-debugsource-3.53.2-slfo.1.1_1.1 * libsqlite3-0-3.53.2-slfo.1.1_1.1 * libsqlite3-0-debuginfo-3.53.2-slfo.1.1_1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-11822.html * https://www.suse.com/security/cve/CVE-2026-11824.html * https://bugzilla.suse.com/show_bug.cgi?id=1268012 * https://bugzilla.suse.com/show_bug.cgi?id=1268013 . This update addresses critical security gaps in sqlite3 affecting SUSE systems, ensuring user data safety.. SUSE sqlite3 update security important vulnerabilities. . Severity: Important. LinuxSecurity.com Team
An update that solves two vulnerabilities can now be installed.. # Security update for sqlite3 Announcement ID: SUSE-SU-2026:22104-1 Release Date: 2026-06-15T09:13:01Z Rating: important References: * bsc#1268012 * bsc#1268013 Cross-References: * CVE-2026-11822 * CVE-2026-11824 CVSS scores: * CVE-2026-11822 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11822 ( NVD ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-11822 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11824 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-11824 ( NVD ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-11824 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for sqlite3 fixes the following issues Update to 3.53.2: * CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). * CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full- text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). Changes: * Add the Query Result Formatter (QRF) library for formatting the results of SQL queries for human readability on a fixed-pitch font screen. * Enhance ALTER TABLE to permit adding and removing NOT NULL and CHECK constraints. * The REINDEX EXPRESSIONS statement rebuilds expression indexes. * The body of TEMP triggers may now modify and/or query tables inthe main schema. * Enhance VACUUM INTO so that if a URI filename is used as the target and that filename has a reserve=N query parameter with N between 0 and 255, then the reserve amount for the generated database copy is set to N. * New SQL functions json_array_insert() and jsonb_array_insert(). * Renovations to the CLI. * New C-language interfaces: sqlite3_str_truncate(), sqlite3_str_free(), sqlite3_carray_bind_v2(). * Add the SQLITE_PREPARE_FROM_DDL option to sqlite3_prepare_v3(). * Added the SQLITE_UTF8_ZT constant which can be used as the encoding parameter to sqlite3_result_text64() or sqlite3_bind_text64() to indicate that the value is UTF-8 encoded and zero terminated. * The SQLITE_LIMIT_PARSER_DEPTH option is added to sqlite3_limit(). * The SQLITE_DBCONFIG_FP_DIGITS option is added to sqlite3_db_config(). * Query planner improvements. * Add new interfaces to the session extension that enable an application to add changes one at a time to the sqlite3_changegroup object. * Improvements to floating-point text conversions. * Added the self-healing index feature to deal with the stale expression index problem. * Add the "-p|--port" option to sqlite3_rsync. * Add the "opfs-wl" VFS, functionally identical to the "opfs" VFS but using Web Locks for locking, which can promise fairer lock sharing than the "opfs" bespoke protocol can. "opfs-wl" requires Atomics.waitAsync(), so requires newer browsers than "opfs" does. * Fixes for problems in 3.53.0 and 3.53.1 reported by users. * See the check-in timeline for details: https://sqlite.org/src/timeline?from=version-3.53.0&to=version-3.53.2 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-754=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * sqlite3-debugsource-3.53.2-1.1 * libsqlite3-0-3.53.2-1.1 * libsqlite3-0-debuginfo-3.53.2-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-11822.html * https://www.suse.com/security/cve/CVE-2026-11824.html * https://bugzilla.suse.com/show_bug.cgi?id=1268012 * https://bugzilla.suse.com/show_bug.cgi?id=1268013 . Important security update for SUSE addressing memory corruption and buffer overflow in sqlite3. Updates recommended.. SUSE Security Advisory, sqlite3 update, buffer overflow fix, memory corruption patch. . Severity: Important. LinuxSecurity.com Team
Security update. Publication date: 11 Jun 2026 URL: https://advisories.mageia.org/MGASA-2026-0195.html Type: security Affected Mageia releases: 9 CVE: CVE-2025-70873 Description: sqlite3 shipped in Mageia 9 lacks ICU support. This update brings sqlite3-icu to allow ICU support be loaded as an optional extension. This update fixes CVE-2025-70873, an information disclosure issue. The zipfileInflate function in the zipfile extension in SQLite v3.51.1 and earlier allows attackers to obtain heap memory via supplying a crafted ZIP file. References: - https://bugs.mageia.org/show_bug.cgi?id=35267 - https://lists.opensuse.org/archives/list/
Get the latest Linux and open source security news straight to your inbox.