pkg:Alpine/sqlite

20 total CVEsCRITICAL4HIGH9MEDIUM7

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2025-6965Integer Truncation on SQLite
    from 0, < 3.41.2-r4
  • CRITICAL9.8CVE-2025-3277An integer overflow can be triggered in SQLite’s `concat_ws()` function.
    from 0, < 3.48.0-r1
  • CRITICAL9.8CVE-2019-8457SQLite3 from 3.6.0 to and including 3.27.2 is vulnerable to heap out-of-bound read in the rtreenode() function when handling invalid rtree…
    from 0, < 3.28.0-r0
  • CRITICAL9.8CVE-2017-10989sqlite3 - security update
    from 0, < 3.13.0-r1
  • HIGH8.1CVE-2019-5018An exploitable use after free vulnerability exists in the window function functionality of Sqlite3 3.26.0.
    from 0, < 3.28.0-r0
  • HIGH8.1CVE-2018-20346sqlite3 - security update
    from 0, < 3.25.3-r0
  • HIGH7.5CVE-2025-29087In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concat_ws() SQL function can cause memory to be written beyond the end of a malloc-alloc…
    from 0, < 3.44.2-r1
  • HIGH7.5CVE-2022-35737`libsqlite3-sys` via C SQLite CVE-2022-35737
    from 0, < 0
  • HIGH7.5CVE-2020-11655sqlite3 - security update
    from 0, < 3.28.0-r3
  • HIGH7.5CVE-2019-19244sqlite3Select in select.c in SQLite 3.30.1 allows a crash if a sub-select uses both DISTINCT and window functions, and also has certain ORD…
    from 0, < 3.28.0-r2
  • HIGH7.5CVE-2018-8740In SQLite through 3.22.0, databases whose schema is corrupted using a CREATE TABLE AS statement could cause a NULL pointer dereference, rel…
    from 0, < 3.13.0-r2
  • HIGH7.5CVE-2017-15286SQLite 3.20.1 has a NULL pointer dereference in tableColumnList in shell.c because it fails to consider certain cases where `sqlite3_step(p…
    from 0, < 3.20.1-r1
  • HIGH7.3CVE-2023-7104SQLite SQLite3 make alltest sqlite3session.c sessionReadRecord heap-based overflow
    from 0, < 3.40.1-r1
  • MEDIUM6.5CVE-2019-16168In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a s…
    from 0, < 3.28.0-r1
  • MEDIUM5.9CVE-2019-19242SQLite 3.30.1 mishandles pExpr->y.pTab, as demonstrated by the TK_COLUMN case in sqlite3ExprCodeTarget in expr.c.
    from 0, < 3.28.0-r2
  • MEDIUM5.5CVE-2025-29088In SQLite 3.49.0 before 3.49.1, certain argument values to sqlite3_db_config (in the C-language API) can cause a denial of service (applica…
    from 0, < 3.48.0-r4
  • MEDIUM5.5CVE-2021-20227A flaw was found in SQLite's SELECT query functionality (src/select.c).
    from 0, < 3.32.1-r1
  • MEDIUM5.5CVE-2020-15358In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse…
    from 0, < 3.32.1-r1
  • MEDIUM5.5CVE-2020-13435SQLite through 3.32.0 has a segmentation fault in sqlite3ExprCodeTarget in expr.c.
    from 0, < 3.32.1-r0
  • MEDIUM5.5CVE-2020-13434sqlite3 - security update
    from 0, < 3.32.1-r0