Security update for sqlite3 SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:1456-1 Final 1 1 2025-05-07T15:13:45Z current 2025-05-07T15:13:45Z 2025-05-07T15:13:45Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for sqlite3 This update for sqlite3 fixes the following issues: - CVE-2025-29087,CVE-2025-3277: Fixed integer overflow in sqlite concat function (bsc#1241020) - CVE-2025-29088: Fixed integer overflow through the SQLITE_DBCONFIG_LOOKASIDE component (bsc#1241078) Other fixes: - Updated to version 3.49.1 from Factory (jsc#SLE-16032) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Container bci/bci-sle15-kernel-module-devel:15.7-2025-1456,Container bci/bci-sle15-kernel-module-devel:latest-2025-1456,Container bci/kiwi:latest-2025-1456,Container bci/openjdk-devel:17-2025-1456,Container bci/openjdk-devel:latest-2025-1456,Container bci/openjdk:17-2025-1456,Container bci/openjdk:latest-2025-1456,Container bci/python:3-2025-1456,Container bci/python:3.13-2025-1456,Container bci/python:latest-2025-1456,Container bci/ruby:3-2025-1456,Container bci/ruby:latest-2025-1456,Container bci/spack:0.23-2025-1456,Container bci/spack:latest-2025-1456,Container suse/389-ds:latest-2025-1456,Container suse/cosign:latest-2025-1456,Container suse/hpc/warewulf4-x86_64/sle-hpc-node:latest-2025-1456,Container suse/kiosk/firefox-esr:latest-2025-1456,Container suse/ltss/sle15.3/bci-base:latest-2025-1456,Container suse/ltss/sle15.4/bci-base:latest-2025-1456,Container suse/ltss/sle15.5/sle15:latest-2025-1456,Container suse/manager/4.3/proxy-httpd:latest-2025-1456,Container suse/manager/4.3/proxy-salt-broker:latest-2025-1456,Container suse/manager/4.3/proxy-squid:latest-2025-1456,Container suse/manager/4.3/proxy-ssh:latest-2025-1456,Container suse/manager/4.3/proxy-tftpd:latest-2025-1456,Container suse/rmt-server:latest-2025-1456,Container suse/sle-micro-rancher/5.2:latest-2025-1456,Container suse/sle-micro-rancher/5.3:latest-2025-1456,Container suse/sle-micro-rancher/5.4:latest-2025-1456,Container suse/sle-micro/5.1/toolbox:latest-2025-1456,Container suse/sle-micro/5.2/toolbox:latest-2025-1456,Container suse/sle-micro/5.3/toolbox:latest-2025-1456,Container suse/sle-micro/5.4/toolbox:latest-2025-1456,Container suse/sle-micro/5.5/toolbox:latest-2025-1456,Container suse/sle-micro/5.5:latest-2025-1456,Container suse/sle-micro/base-5.5:latest-2025-1456,Container suse/sle-micro/kvm-5.5:latest-2025-1456,Container suse/sle-micro/rt-5.5:latest-2025-1456,Container suse/sle15:15.6-2025-1456,Container suse/sle15:15.7-2025-1456,Image SLES15-SP4-Manager-Proxy-4-3-BYOS-2025-1456,Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2-2025-1456,SUSE-2025-1456,SUSE-SLE-Micro-5.3-2025-1456,SUSE-SLE-Micro-5.4-2025-1456,SUSE-SLE-Micro-5.5-2025-1456,SUSE-SLE-Module-Basesystem-15-SP6-2025-1456,SUSE-SUSE-MicroOS-5.1-2025-1456,SUSE-SUSE-MicroOS-5.2-2025-1456,openSUSE-SLE-15.6-2025-1456 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-20251456-1/ Link for SUSE-SU-2025:1456-1 https://lists.suse.com/pipermail/sle-security-updates/2025-May/020803.html E-Mail link for SUSE-SU-2025:1456-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1241020 SUSE Bug 1241020 https://bugzilla.suse.com/1241078 SUSE Bug 1241078 https://bugzilla.suse.com/1241189 SUSE Bug 1241189 https://www.suse.com/security/cve/CVE-2025-29087/ SUSE CVE CVE-2025-29087 page https://www.suse.com/security/cve/CVE-2025-29088/ SUSE CVE CVE-2025-29088 page https://www.suse.com/security/cve/CVE-2025-3277/ SUSE CVE CVE-2025-3277 page Container bci/bci-sle15-kernel-module-devel:15.7 Container bci/bci-sle15-kernel-module-devel:latest Container bci/kiwi:latest Container bci/openjdk-devel:17 Container bci/openjdk-devel:latest Container bci/openjdk:17 Container bci/openjdk:latest Container bci/python:3 Container bci/python:3.13 Container bci/python:latest Container bci/ruby:3 Container bci/ruby:latest Container bci/spack:0.23 Container bci/spack:latest Container suse/389-ds:latest Container suse/cosign:latest Container suse/hpc/warewulf4-x86_64/sle-hpc-node:latest Container suse/kiosk/firefox-esr:latest Container suse/ltss/sle15.3/bci-base:latest Container suse/ltss/sle15.4/bci-base:latest Container suse/ltss/sle15.5/sle15:latest Container suse/manager/4.3/proxy-httpd:latest Container suse/manager/4.3/proxy-salt-broker:latest Container suse/manager/4.3/proxy-squid:latest Container suse/manager/4.3/proxy-ssh:latest Container suse/manager/4.3/proxy-tftpd:latest Container suse/rmt-server:latest Container suse/sle-micro-rancher/5.2:latest Container suse/sle-micro-rancher/5.3:latest Container suse/sle-micro-rancher/5.4:latest Container suse/sle-micro/5.1/toolbox:latest Container suse/sle-micro/5.2/toolbox:latest Container suse/sle-micro/5.3/toolbox:latest Container suse/sle-micro/5.4/toolbox:latest Container suse/sle-micro/5.5/toolbox:latest Container suse/sle-micro/5.5:latest Container suse/sle-micro/base-5.5:latest Container suse/sle-micro/kvm-5.5:latest Container suse/sle-micro/rt-5.5:latest Container suse/sle15:15.6 Container suse/sle15:15.7 Image SLES15-SP4-Manager-Proxy-4-3-BYOS Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Micro 5.4 SUSE Linux Enterprise Micro 5.5 SUSE Linux Enterprise Module for Basesystem 15 SP6 openSUSE Leap 15.6 libsqlite3-0-3.49.1-150000.3.27.1 sqlite3-devel-3.49.1-150000.3.27.1 sqlite3-3.49.1-150000.3.27.1 sqlite3-tcl-3.49.1-150000.3.27.1 libsqlite3-0-32bit-3.49.1-150000.3.27.1 libsqlite3-0-64bit-3.49.1-150000.3.27.1 sqlite3-doc-3.49.1-150000.3.27.1 libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container bci/bci-sle15-kernel-module-devel:15.7 libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container bci/bci-sle15-kernel-module-devel:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container bci/kiwi:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container bci/openjdk-devel:17 libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container bci/openjdk-devel:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container bci/openjdk:17 libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container bci/openjdk:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container bci/python:3 libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container bci/python:3.13 libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container bci/python:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container bci/ruby:3 sqlite3-devel-3.49.1-150000.3.27.1 as a component of Container bci/ruby:3 libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container bci/ruby:latest sqlite3-devel-3.49.1-150000.3.27.1 as a component of Container bci/ruby:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container bci/spack:0.23 libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container bci/spack:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/389-ds:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/cosign:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/hpc/warewulf4-x86_64/sle-hpc-node:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/kiosk/firefox-esr:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/ltss/sle15.3/bci-base:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/ltss/sle15.4/bci-base:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/ltss/sle15.5/sle15:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/manager/4.3/proxy-httpd:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/manager/4.3/proxy-salt-broker:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/manager/4.3/proxy-squid:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/manager/4.3/proxy-ssh:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/manager/4.3/proxy-tftpd:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/rmt-server:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/sle-micro-rancher/5.2:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/sle-micro-rancher/5.3:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/sle-micro-rancher/5.4:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/sle-micro/5.1/toolbox:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/sle-micro/5.2/toolbox:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/sle-micro/5.3/toolbox:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/sle-micro/5.4/toolbox:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/sle-micro/5.5/toolbox:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/sle-micro/5.5:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/sle-micro/base-5.5:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/sle-micro/kvm-5.5:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/sle-micro/rt-5.5:latest libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/sle15:15.6 libsqlite3-0-3.49.1-150000.3.27.1 as a component of Container suse/sle15:15.7 libsqlite3-0-3.49.1-150000.3.27.1 as a component of Image SLES15-SP4-Manager-Proxy-4-3-BYOS sqlite3-3.49.1-150000.3.27.1 as a component of Image SLES15-SP4-Manager-Proxy-4-3-BYOS sqlite3-tcl-3.49.1-150000.3.27.1 as a component of Image SLES15-SP4-Manager-Proxy-4-3-BYOS libsqlite3-0-3.49.1-150000.3.27.1 as a component of Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2 sqlite3-3.49.1-150000.3.27.1 as a component of Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2 sqlite3-tcl-3.49.1-150000.3.27.1 as a component of Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2 libsqlite3-0-3.49.1-150000.3.27.1 as a component of SUSE Linux Enterprise Micro 5.1 libsqlite3-0-3.49.1-150000.3.27.1 as a component of SUSE Linux Enterprise Micro 5.2 libsqlite3-0-3.49.1-150000.3.27.1 as a component of SUSE Linux Enterprise Micro 5.3 sqlite3-tcl-3.49.1-150000.3.27.1 as a component of SUSE Linux Enterprise Micro 5.3 libsqlite3-0-3.49.1-150000.3.27.1 as a component of SUSE Linux Enterprise Micro 5.4 sqlite3-tcl-3.49.1-150000.3.27.1 as a component of SUSE Linux Enterprise Micro 5.4 libsqlite3-0-3.49.1-150000.3.27.1 as a component of SUSE Linux Enterprise Micro 5.5 sqlite3-tcl-3.49.1-150000.3.27.1 as a component of SUSE Linux Enterprise Micro 5.5 libsqlite3-0-3.49.1-150000.3.27.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libsqlite3-0-32bit-3.49.1-150000.3.27.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 sqlite3-3.49.1-150000.3.27.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 sqlite3-devel-3.49.1-150000.3.27.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 sqlite3-tcl-3.49.1-150000.3.27.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libsqlite3-0-3.49.1-150000.3.27.1 as a component of openSUSE Leap 15.6 libsqlite3-0-32bit-3.49.1-150000.3.27.1 as a component of openSUSE Leap 15.6 sqlite3-3.49.1-150000.3.27.1 as a component of openSUSE Leap 15.6 sqlite3-devel-3.49.1-150000.3.27.1 as a component of openSUSE Leap 15.6 sqlite3-doc-3.49.1-150000.3.27.1 as a component of openSUSE Leap 15.6 sqlite3-tcl-3.49.1-150000.3.27.1 as a component of openSUSE Leap 15.6 In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concat_ws() SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string (e.g., 2MB or more), an integer overflow occurs in calculating the size of the result buffer, and thus malloc may not allocate enough memory. CVE-2025-29087 Container bci/bci-sle15-kernel-module-devel:15.7:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/bci-sle15-kernel-module-devel:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/kiwi:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/openjdk-devel:17:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/openjdk-devel:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/openjdk:17:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/openjdk:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/python:3.13:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/python:3:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/python:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/ruby:3:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/ruby:3:sqlite3-devel-3.49.1-150000.3.27.1 Container bci/ruby:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/ruby:latest:sqlite3-devel-3.49.1-150000.3.27.1 Container bci/spack:0.23:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/spack:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/389-ds:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/cosign:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/hpc/warewulf4-x86_64/sle-hpc-node:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/kiosk/firefox-esr:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/ltss/sle15.3/bci-base:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/ltss/sle15.4/bci-base:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/ltss/sle15.5/sle15:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-httpd:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-salt-broker:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-squid:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-ssh:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-tftpd:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/rmt-server:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro-rancher/5.2:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro-rancher/5.3:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro-rancher/5.4:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.1/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.2/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.3/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.4/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.5/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.5:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/base-5.5:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/kvm-5.5:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/rt-5.5:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle15:15.6:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle15:15.7:libsqlite3-0-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2:libsqlite3-0-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2:sqlite3-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2:sqlite3-tcl-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS:libsqlite3-0-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS:sqlite3-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS:sqlite3-tcl-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.1:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.2:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.3:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.3:sqlite3-tcl-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.4:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.4:sqlite3-tcl-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.5:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.5:sqlite3-tcl-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libsqlite3-0-32bit-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:sqlite3-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:sqlite3-devel-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:sqlite3-tcl-3.49.1-150000.3.27.1 openSUSE Leap 15.6:libsqlite3-0-3.49.1-150000.3.27.1 openSUSE Leap 15.6:libsqlite3-0-32bit-3.49.1-150000.3.27.1 openSUSE Leap 15.6:sqlite3-3.49.1-150000.3.27.1 openSUSE Leap 15.6:sqlite3-devel-3.49.1-150000.3.27.1 openSUSE Leap 15.6:sqlite3-doc-3.49.1-150000.3.27.1 openSUSE Leap 15.6:sqlite3-tcl-3.49.1-150000.3.27.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20251456-1/ https://www.suse.com/security/cve/CVE-2025-29087.html CVE-2025-29087 https://bugzilla.suse.com/1241020 SUSE Bug 1241020 In SQLite 3.49.0 before 3.49.1, certain argument values to sqlite3_db_config (in the C-language API) can cause a denial of service (application crash). An sz*nBig multiplication is not cast to a 64-bit integer, and consequently some memory allocations may be incorrect. CVE-2025-29088 Container bci/bci-sle15-kernel-module-devel:15.7:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/bci-sle15-kernel-module-devel:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/kiwi:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/openjdk-devel:17:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/openjdk-devel:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/openjdk:17:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/openjdk:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/python:3.13:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/python:3:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/python:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/ruby:3:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/ruby:3:sqlite3-devel-3.49.1-150000.3.27.1 Container bci/ruby:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/ruby:latest:sqlite3-devel-3.49.1-150000.3.27.1 Container bci/spack:0.23:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/spack:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/389-ds:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/cosign:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/hpc/warewulf4-x86_64/sle-hpc-node:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/kiosk/firefox-esr:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/ltss/sle15.3/bci-base:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/ltss/sle15.4/bci-base:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/ltss/sle15.5/sle15:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-httpd:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-salt-broker:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-squid:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-ssh:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-tftpd:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/rmt-server:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro-rancher/5.2:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro-rancher/5.3:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro-rancher/5.4:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.1/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.2/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.3/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.4/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.5/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.5:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/base-5.5:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/kvm-5.5:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/rt-5.5:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle15:15.6:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle15:15.7:libsqlite3-0-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2:libsqlite3-0-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2:sqlite3-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2:sqlite3-tcl-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS:libsqlite3-0-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS:sqlite3-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS:sqlite3-tcl-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.1:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.2:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.3:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.3:sqlite3-tcl-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.4:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.4:sqlite3-tcl-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.5:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.5:sqlite3-tcl-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libsqlite3-0-32bit-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:sqlite3-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:sqlite3-devel-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:sqlite3-tcl-3.49.1-150000.3.27.1 openSUSE Leap 15.6:libsqlite3-0-3.49.1-150000.3.27.1 openSUSE Leap 15.6:libsqlite3-0-32bit-3.49.1-150000.3.27.1 openSUSE Leap 15.6:sqlite3-3.49.1-150000.3.27.1 openSUSE Leap 15.6:sqlite3-devel-3.49.1-150000.3.27.1 openSUSE Leap 15.6:sqlite3-doc-3.49.1-150000.3.27.1 openSUSE Leap 15.6:sqlite3-tcl-3.49.1-150000.3.27.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20251456-1/ https://www.suse.com/security/cve/CVE-2025-29088.html CVE-2025-29088 https://bugzilla.suse.com/1241078 SUSE Bug 1241078 An integer overflow can be triggered in SQLite's `concat_ws()` function. The resulting, truncated integer is then used to allocate a buffer. When SQLite then writes the resulting string to the buffer, it uses the original, untruncated size and thus a wild Heap Buffer overflow of size ~4GB can be triggered. This can result in arbitrary code execution. CVE-2025-3277 Container bci/bci-sle15-kernel-module-devel:15.7:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/bci-sle15-kernel-module-devel:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/kiwi:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/openjdk-devel:17:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/openjdk-devel:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/openjdk:17:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/openjdk:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/python:3.13:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/python:3:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/python:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/ruby:3:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/ruby:3:sqlite3-devel-3.49.1-150000.3.27.1 Container bci/ruby:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/ruby:latest:sqlite3-devel-3.49.1-150000.3.27.1 Container bci/spack:0.23:libsqlite3-0-3.49.1-150000.3.27.1 Container bci/spack:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/389-ds:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/cosign:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/hpc/warewulf4-x86_64/sle-hpc-node:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/kiosk/firefox-esr:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/ltss/sle15.3/bci-base:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/ltss/sle15.4/bci-base:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/ltss/sle15.5/sle15:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-httpd:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-salt-broker:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-squid:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-ssh:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/manager/4.3/proxy-tftpd:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/rmt-server:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro-rancher/5.2:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro-rancher/5.3:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro-rancher/5.4:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.1/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.2/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.3/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.4/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.5/toolbox:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/5.5:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/base-5.5:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/kvm-5.5:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle-micro/rt-5.5:latest:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle15:15.6:libsqlite3-0-3.49.1-150000.3.27.1 Container suse/sle15:15.7:libsqlite3-0-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2:libsqlite3-0-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2:sqlite3-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2:sqlite3-tcl-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS:libsqlite3-0-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS:sqlite3-3.49.1-150000.3.27.1 Image SLES15-SP4-Manager-Proxy-4-3-BYOS:sqlite3-tcl-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.1:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.2:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.3:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.3:sqlite3-tcl-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.4:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.4:sqlite3-tcl-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.5:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Micro 5.5:sqlite3-tcl-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libsqlite3-0-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libsqlite3-0-32bit-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:sqlite3-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:sqlite3-devel-3.49.1-150000.3.27.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:sqlite3-tcl-3.49.1-150000.3.27.1 openSUSE Leap 15.6:libsqlite3-0-3.49.1-150000.3.27.1 openSUSE Leap 15.6:libsqlite3-0-32bit-3.49.1-150000.3.27.1 openSUSE Leap 15.6:sqlite3-3.49.1-150000.3.27.1 openSUSE Leap 15.6:sqlite3-devel-3.49.1-150000.3.27.1 openSUSE Leap 15.6:sqlite3-doc-3.49.1-150000.3.27.1 openSUSE Leap 15.6:sqlite3-tcl-3.49.1-150000.3.27.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20251456-1/ https://www.suse.com/security/cve/CVE-2025-3277.html CVE-2025-3277 https://bugzilla.suse.com/1241189 SUSE Bug 1241189