{"dataType": "CVE_RECORD", "containers": {"adp": [{"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "redhat", "product": "lemon", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "sqlite", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "sqlite-devel", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "sqlite-doc", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "sqlite-tcl", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2025-6965"}], "descriptions": [{"lang": "en", "value": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior. \n            This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner—typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.\n            Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2025-07-15T13:44:00Z", "x_subShortName": "redhat_6"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "redhat", "product": "firefox", "platforms": ["cpe:/o:redhat:enterprise_linux:7"], "defaultStatus": "affected"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2025-6965"}], "descriptions": [{"lang": "en", "value": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior. \n            This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner—typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.\n            Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2025-07-15T13:44:00Z", "x_subShortName": "redhat_7"}}, {"metrics": [{"other": {"type": "Unknown", "content": {"data": "{\"description\":\"medium\"}"}}}], "affected": [{"vendor": "canonical", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.22.0-1ubuntu0.7+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "libsqlite3-0", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.22.0-1ubuntu0.7+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "libsqlite3-tcl", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.22.0-1ubuntu0.7+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "sqlite3", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.22.0-1ubuntu0.7+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.31.1-4ubuntu0.7+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "libsqlite3-0", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.31.1-4ubuntu0.7+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "libsqlite3-tcl", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.31.1-4ubuntu0.7+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "sqlite3", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.31.1-4ubuntu0.7+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.37.2-2ubuntu0.5", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "libsqlite3-0", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.37.2-2ubuntu0.5", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "libsqlite3-tcl", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.37.2-2ubuntu0.5", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "sqlite3", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.37.2-2ubuntu0.5", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "sqlite3-tools", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.37.2-2ubuntu0.5", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.45.1-1ubuntu2.4", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "libsqlite3-0", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.45.1-1ubuntu2.4", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "libsqlite3-tcl", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.45.1-1ubuntu2.4", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "sqlite3", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.45.1-1ubuntu2.4", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "sqlite3-tools", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.45.1-1ubuntu2.4", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.8.2-1ubuntu2.2+esm5", "versionType": "custom"}], "platforms": ["trusty"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "libsqlite3-0", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.8.2-1ubuntu2.2+esm5", "versionType": "custom"}], "platforms": ["trusty"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "libsqlite3-tcl", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.8.2-1ubuntu2.2+esm5", "versionType": "custom"}], "platforms": ["trusty"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "sqlite3", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.8.2-1ubuntu2.2+esm5", "versionType": "custom"}], "platforms": ["trusty"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.11.0-1ubuntu1.5+esm3", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "libsqlite3-0", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.11.0-1ubuntu1.5+esm3", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "libsqlite3-tcl", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.11.0-1ubuntu1.5+esm3", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "sqlite3", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.11.0-1ubuntu1.5+esm3", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "libsqlite-tcl", "platforms": ["bionic", "focal", "jammy", "trusty", "xenial"], "defaultStatus": "unknown"}, {"vendor": "canonical", "product": "libsqlite0", "platforms": ["bionic", "focal", "jammy", "trusty", "xenial"], "defaultStatus": "unknown"}, {"vendor": "canonical", "product": "sqlite", "platforms": ["bionic", "focal", "jammy", "trusty", "xenial"], "defaultStatus": "unknown"}], "references": [{"url": "https://ubuntu.com/security/CVE-2025-6965"}, {"url": "https://ubuntu.com/security/notices/USN-7676-1"}, {"url": "https://ubuntu.com/security/notices/USN-7679-1"}, {"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"}], "descriptions": [{"lang": "en", "value": "There exists a vulnerability in SQLite versions before 3.50.2 where thenumber of aggregate terms could exceed the number of columns available.This could lead to a memory corruption issue. We recommend upgrading toversion 3.50.2 or above."}], "providerMetadata": {"orgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc", "shortName": "canonical", "dateUpdated": "2025-07-15T14:15:00Z", "x_subShortName": "canonical"}}, {"metrics": [{"other": {"type": "Unknown", "content": {"data": "{\"description\":\"not yet assigned\"}"}}}], "affected": [{"vendor": "debian", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.1-2+deb12u2", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "lemon-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.1-2+deb12u2", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsqlite3-0", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.1-2+deb12u2", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsqlite3-0-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.1-2+deb12u2", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsqlite3-dev", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.1-2+deb12u2", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsqlite3-tcl", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.1-2+deb12u2", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsqlite3-tcl-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.1-2+deb12u2", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "sqlite3", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.1-2+deb12u2", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "sqlite3-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.1-2+deb12u2", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "sqlite3-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.1-2+deb12u2", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "sqlite3-tools", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.1-2+deb12u2", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "sqlite3-tools-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.1-2+deb12u2", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "sqlite3", "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "lemon-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsqlite3-0", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsqlite3-0-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsqlite3-dev", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsqlite3-ext-csv", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsqlite3-ext-csv-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsqlite3-ext-icu", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsqlite3-ext-icu-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsqlite3-tcl", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsqlite3-tcl-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "sqlite3", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "sqlite3-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "sqlite3-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "sqlite3-tools", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "sqlite3-tools-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.46.1-7", "versionType": "deb"}], "platforms": ["forky", "sid", "trixie"], "defaultStatus": "unaffected"}], "references": [{"url": "https://security-tracker.debian.org/tracker/CVE-2025-6965"}], "descriptions": [{"lang": "en", "value": "There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above."}], "providerMetadata": {"orgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5", "shortName": "debian", "dateUpdated": "2025-07-15T13:44:00.784Z", "x_subShortName": "debian"}}, {"credits": [{"lang": "en", "value": "packager@almalinux.org"}], "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "almalinux", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "sqlite-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2025-6965", "name": "CVE-2025-6965"}], "descriptions": [{"lang": "en", "value": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.  \n\nSecurity Fix(es):  \n\n  * sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n"}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000001", "shortName": "almalinux", "dateUpdated": "2025-07-28T00:00:00Z", "x_subShortName": "alma_10"}}, {"credits": [{"lang": "en", "value": "packager@almalinux.org"}], "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "almalinux", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "mingw32-sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "mingw32-sqlite-static", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "mingw64-sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "mingw64-sqlite-static", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "nodejs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module_el8.10.0+4028+97ddca84", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "nodejs-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module_el8.10.0+4028+97ddca84", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "nodejs-docs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module_el8.10.0+4028+97ddca84", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "nodejs-full-i18n", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module_el8.10.0+4028+97ddca84", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "nodejs-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module_el8.10.0+4028+97ddca84", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "nodejs-nodemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module_el8.10.0+3983+391a1a04", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "nodejs-packaging", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module_el8.10.0+4006+3c416519", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "nodejs-packaging-bundler", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module_el8.10.0+3961+6a788e57", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "npm", "versions": [{"status": "affected", "version": "0", "lessThan": "1:10.9.2-1.22.16.0.2.module_el8.10.0+4028+97ddca84", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "sqlite-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "sqlite-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "v8-12.4-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "3:12.4.254.21-1.22.16.0.2.module_el8.10.0+4028+97ddca84", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2025-6965", "name": "CVE-2025-6965"}], "descriptions": [{"lang": "en", "value": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language.   \n\nSecurity Fix(es):  \n\n  * sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n"}, {"lang": "en", "value": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.  \n\nSecurity Fix(es):  \n\n  * sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n"}, {"lang": "en", "value": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server. Version 2 and version 3 binaries are named to permit each to be installed on a single host This package contains cross-compiled libraries and development tools for Windows.  \n\nSecurity Fix(es):  \n\n  * sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n"}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000001", "shortName": "almalinux", "dateUpdated": "2025-07-28T00:00:00Z", "x_subShortName": "alma_8"}}, {"credits": [{"lang": "en", "value": "packager@almalinux.org"}], "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "almalinux", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "sqlite-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2025-6965", "name": "CVE-2025-6965"}], "descriptions": [{"lang": "en", "value": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.  \n\nSecurity Fix(es):  \n\n  * sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n"}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000001", "shortName": "almalinux", "dateUpdated": "2025-07-28T00:00:00Z", "x_subShortName": "alma_9"}}, {"metrics": [{"other": {"type": "Unknown", "content": {"data": "{\"description\":\"high\"}"}}}], "affected": [{"vendor": "fedora", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.fc41", "versionType": "rpm"}], "platforms": ["cpe:/o:fedoraproject:fedora:41"], "defaultStatus": "unaffected"}, {"vendor": "fedora", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.47.2-5.fc42", "versionType": "rpm"}], "platforms": ["cpe:/o:fedoraproject:fedora:42"], "defaultStatus": "unaffected"}], "references": [{"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-39461417a6"}, {"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-3af464595a"}], "descriptions": [{"lang": "en", "value": "sqlite: Integer Truncation in SQLite"}], "providerMetadata": {"orgId": "92fb86c3-55a5-4fb5-9c3f-4757b9e96dc5", "shortName": "fedora", "dateUpdated": "2025-10-01T14:43:51Z", "x_subShortName": "fedora"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"IMPORTANT\"}"}}}], "affected": [{"vendor": "oraclelinux", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "sqlite-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.7.17-8.0.1.el7_9.1", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.7.17-8.0.1.el7_9.1", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.7.17-8.0.1.el7_9.1", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "sqlite-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.7.17-8.0.1.el7_9.1", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "sqlite-tcl", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.7.17-8.0.1.el7_9.1", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "mingw32-sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "mingw32-sqlite-static", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "mingw64-sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "mingw64-sqlite-static", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+90633+72602921", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+90633+72602921", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs-docs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+90633+72602921", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs-full-i18n", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+90633+72602921", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+90633+72602921", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs-nodemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el8.10.0+90633+72602921", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs-packaging", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+90633+72602921", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs-packaging-bundler", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+90633+72602921", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "npm", "versions": [{"status": "affected", "version": "0", "lessThan": "1:10.9.2-1.22.16.0.2.module+el8.10.0+90633+72602921", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "sqlite-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "sqlite-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "v8-12.4-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "3:12.4.254.21-1.22.16.0.2.module+el8.10.0+90633+72602921", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el9.6.0+90635+2adf922b", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el9.6.0+90635+2adf922b", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs-docs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el9.6.0+90635+2adf922b", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs-full-i18n", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el9.6.0+90635+2adf922b", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el9.6.0+90635+2adf922b", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs-nodemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el9.6.0+90635+2adf922b", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs-packaging", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el9.6.0+90635+2adf922b", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "nodejs-packaging-bundler", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el9.6.0+90635+2adf922b", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "npm", "versions": [{"status": "affected", "version": "0", "lessThan": "1:10.9.2-1.22.16.0.2.module+el9.6.0+90635+2adf922b", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "sqlite-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "v8-12.4-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "3:12.4.254.21-1.22.16.0.2.module+el9.6.0+90635+2adf922b", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}], "references": [{"url": "https://linux.oracle.com/cve/CVE-2025-6965.html"}], "descriptions": [{"lang": "en", "value": "There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above."}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000006", "shortName": "oraclelinux", "dateUpdated": "2025-07-28T00:00:00Z", "x_subShortName": "oraclelinux"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "redhat", "product": "lemon-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite-analyzer-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite-debugsource", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite-libs-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite-tcl-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite-tools-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "firefox", "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "thunderbird", "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2025-6965"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"}, {"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"}, {"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"}, {"url": "https://www.oracle.com/security-alerts/cpujan2026.html#AppendixMSQL"}, {"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"}], "descriptions": [{"lang": "en", "value": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2025-07-15T13:44:00Z", "x_subShortName": "redhat_10"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "redhat", "product": "cargo", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "cargo-doc", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "clippy", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "firefox", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "mingw32-sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "mingw32-sqlite-static", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "mingw64-sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "mingw64-sqlite-static", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+23338+c5a38893", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+23338+c5a38893", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs-docs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+23338+c5a38893", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs-full-i18n", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+23338+c5a38893", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+23338+c5a38893", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs-nodemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el8.10.0+23140+4056b950", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs-packaging", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+23140+4056b950", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs-packaging-bundler", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+23140+4056b950", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "npm", "versions": [{"status": "affected", "version": "0", "lessThan": "1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rls", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-analysis", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-analyzer", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-debugger-common", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-doc", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-gdb", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-lldb", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-src", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-std-static", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-std-static-wasm32-unknown-unknown", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-std-static-wasm32-wasi", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-toolset", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rustfmt", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "thunderbird", "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "v8-12.4-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}], "references": [{"url": "https://access.redhat.com/errata/RHSA-2025:11803"}, {"url": "https://access.redhat.com/errata/RHSA-2025:12010"}, {"url": "https://access.redhat.com/errata/RHSA-2025:14101"}, {"url": "https://access.redhat.com/security/cve/CVE-2025-6965"}], "descriptions": [{"lang": "en", "value": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section."}, {"lang": "en", "value": "Red Hat's versions of the associated software have been determined to NOT be affected by CVE-2025-6965."}, {"lang": "en", "value": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section."}, {"lang": "en", "value": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.  Version 2 and version 3 binaries are named to permit each to be installed on a single host  This package contains cross-compiled libraries and development tools for Windows.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2025-07-15T13:44:00Z", "x_subShortName": "redhat_8"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "redhat", "product": "cargo", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "clippy", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "firefox", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "firefox-x11", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el9.6.0+23339+d3c8acfa", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el9.6.0+23339+d3c8acfa", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs-docs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el9.6.0+23339+d3c8acfa", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs-full-i18n", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el9.6.0+23339+d3c8acfa", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el9.6.0+23339+d3c8acfa", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs-nodemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el9.6.0+23339+d3c8acfa", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs-packaging", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el9.6.0+23339+d3c8acfa", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "nodejs-packaging-bundler", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el9.6.0+23339+d3c8acfa", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "npm", "versions": [{"status": "affected", "version": "0", "lessThan": "1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-analysis", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-analyzer", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-debugger-common", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-doc", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-gdb", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-lldb", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-src", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-std-static", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-std-static-wasm32-unknown-unknown", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-std-static-wasm32-wasi", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rust-toolset", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "rustfmt", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "sqlite-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "thunderbird", "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "v8-12.4-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}], "references": [{"url": "https://access.redhat.com/errata/RHSA-2025:11802"}, {"url": "https://access.redhat.com/errata/RHSA-2025:11992"}, {"url": "https://access.redhat.com/errata/RHSA-2025:20936"}, {"url": "https://access.redhat.com/security/cve/CVE-2025-6965"}], "descriptions": [{"lang": "en", "value": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section."}, {"lang": "en", "value": "Red Hat's versions of the associated software have been determined to NOT be affected by CVE-2025-6965."}, {"lang": "en", "value": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2025-07-15T13:44:00Z", "x_subShortName": "redhat_9"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "rocky", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:10"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:10"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-debugsource", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:10"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:10"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:10"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-libs-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.46.1-5.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:10"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "lemon-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "mingw-sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "mingw32-sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "mingw32-sqlite-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "mingw32-sqlite-static", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "mingw64-sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "mingw64-sqlite-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "mingw64-sqlite-static", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0.0-2.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "nodejs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+2012+fb8b67c7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "nodejs-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+2012+fb8b67c7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "nodejs-debugsource", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+2012+fb8b67c7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "nodejs-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+2012+fb8b67c7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "nodejs-docs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+2012+fb8b67c7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "nodejs-full-i18n", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+2012+fb8b67c7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "nodejs-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+2012+fb8b67c7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "nodejs-libs-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.16.0-2.module+el8.10.0+2012+fb8b67c7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "nodejs-nodemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el8.10.0+1666+930e28e8", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el8.10.0+1667+4a788d89", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el8.10.0+1823+b5789597", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el8.10.0+1824+532140ee", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el8.10.0+1924+614dc87f", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el8.10.0+1935+d3cbe60f", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el8.10.0+1988+437f3d23", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el8.10.0+1989+e60144d9", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el8.9.0+1760+903d54b9", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "nodejs-packaging", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+1667+4a788d89", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+1823+b5789597", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+1824+532140ee", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+1924+614dc87f", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+1988+437f3d23", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+1989+e60144d9", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.9.0+1419+1f26ef47", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "nodejs-packaging-bundler", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+1667+4a788d89", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+1823+b5789597", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+1824+532140ee", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+1924+614dc87f", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+1988+437f3d23", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.10.0+1989+e60144d9", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el8.9.0+1419+1f26ef47", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "npm", "versions": [{"status": "affected", "version": "0", "lessThan": "1:10.9.2-1.22.16.0.2.module+el8.10.0+2012+fb8b67c7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-debugsource", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-libs-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.0-20.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "v8-12.4-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "3:12.4.254.21-1.22.16.0.2.module+el8.10.0+2012+fb8b67c7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "nodejs-nodemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el9.6.0+32143+ae966e5b", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el9.6.0+32185+bd121a25", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:3.0.1-1.module+el9.6.0+32494+726e9034", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "nodejs-packaging", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el9.6.0+32143+ae966e5b", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el9.6.0+32185+bd121a25", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el9.6.0+32494+726e9034", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "nodejs-packaging-bundler", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el9.6.0+32143+ae966e5b", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el9.6.0+32185+bd121a25", "versionType": "rpm"}, {"status": "affected", "version": "0", "lessThan": "0:2021.06-4.module+el9.6.0+32494+726e9034", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-debugsource", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-debugsource", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-libs-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-8.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "sqlite-libs-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.34.1-9.el9_7", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}], "references": [{"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"}], "descriptions": [{"lang": "en", "value": "sqlite: Integer Truncation in SQLite (CVE-2025-6965)"}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000004", "shortName": "rocky", "dateUpdated": "2025-07-29T13:38:26Z", "x_subShortName": "rocky"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "suse", "product": "libsqlite3-0", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.2-150000.3.33.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-basesystem:15:sp6", "cpe:/o:suse:sle-module-basesystem:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles-ltss:15:sp2", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "libsqlite3-0-32bit", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.2-150000.3.33.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-basesystem:15:sp6", "cpe:/o:suse:sle-module-basesystem:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles-ltss:15:sp2", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "sqlite3", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.2-150000.3.33.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-basesystem:15:sp6", "cpe:/o:suse:sle-module-basesystem:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles-ltss:15:sp2", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "sqlite3-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.2-150000.3.33.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-basesystem:15:sp6", "cpe:/o:suse:sle-module-basesystem:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles-ltss:15:sp2", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "sqlite3-tcl", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.2-150000.3.33.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-basesystem:15:sp6", "cpe:/o:suse:sle-module-basesystem:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles-ltss:15:sp2", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "SUSE bug 1246597"}], "references": [{"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6965", "name": "Mitre CVE-2025-6965"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001851.html", "name": "RHSA-2025:11802"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001848.html", "name": "RHSA-2025:11803"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001854.html", "name": "RHSA-2025:11992"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001847.html", "name": "RHSA-2025:12010"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-August/001873.html", "name": "RHSA-2025:12349"}, {"url": "https://www.suse.com/security/cve/CVE-2025-6965", "name": "SUSE CVE-2025-6965"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041082.html", "name": "SUSE-SU-2025:02672-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041155.html", "name": "SUSE-SU-2025:02744-1"}, {"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-August/022318.html", "name": "SUSE-SU-2025:20561-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-September/041627.html", "name": "SUSE-SU-2025:20674-1"}], "descriptions": [{"lang": "en", "value": "\n    There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.\n    "}], "providerMetadata": {"orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "shortName": "suse", "dateUpdated": "2025-08-05T00:00:00Z", "x_subShortName": "suse_server_15"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "suse", "product": "libsqlite3-0", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.2-150000.3.33.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-basesystem:15:sp6", "cpe:/o:suse:sle-module-basesystem:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "libsqlite3-0-32bit", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.2-150000.3.33.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-basesystem:15:sp6", "cpe:/o:suse:sle-module-basesystem:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "sqlite3", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.2-150000.3.33.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-basesystem:15:sp6", "cpe:/o:suse:sle-module-basesystem:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "sqlite3-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.2-150000.3.33.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-basesystem:15:sp6", "cpe:/o:suse:sle-module-basesystem:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "sqlite3-tcl", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.2-150000.3.33.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-basesystem:15:sp6", "cpe:/o:suse:sle-module-basesystem:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "SUSE bug 1246597"}], "references": [{"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6965", "name": "Mitre CVE-2025-6965"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001851.html", "name": "RHSA-2025:11802"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001848.html", "name": "RHSA-2025:11803"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001854.html", "name": "RHSA-2025:11992"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001847.html", "name": "RHSA-2025:12010"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-August/001873.html", "name": "RHSA-2025:12349"}, {"url": "https://www.suse.com/security/cve/CVE-2025-6965", "name": "SUSE CVE-2025-6965"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041082.html", "name": "SUSE-SU-2025:02672-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041155.html", "name": "SUSE-SU-2025:02744-1"}, {"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-August/022318.html", "name": "SUSE-SU-2025:20561-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-September/041627.html", "name": "SUSE-SU-2025:20674-1"}], "descriptions": [{"lang": "en", "value": "\n    There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.\n    "}], "providerMetadata": {"orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "shortName": "suse", "dateUpdated": "2025-08-05T00:00:00Z", "x_subShortName": "suse_desktop_15"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "suse", "product": "libsqlite3-0", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.4-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "libsqlite3-0-x86-64-v3", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.4-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "sqlite3", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.4-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "sqlite3-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.4-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "sqlite3-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.4-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "sqlite3-tcl", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.50.4-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "SUSE bug 1246597"}], "references": [{"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6965", "name": "Mitre CVE-2025-6965"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001851.html", "name": "RHSA-2025:11802"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001848.html", "name": "RHSA-2025:11803"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001854.html", "name": "RHSA-2025:11992"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001847.html", "name": "RHSA-2025:12010"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-August/001873.html", "name": "RHSA-2025:12349"}, {"url": "https://www.suse.com/security/cve/CVE-2025-6965", "name": "SUSE CVE-2025-6965"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041082.html", "name": "SUSE-SU-2025:02672-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041155.html", "name": "SUSE-SU-2025:02744-1"}, {"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-August/022318.html", "name": "SUSE-SU-2025:20561-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-September/041627.html", "name": "SUSE-SU-2025:20674-1"}], "descriptions": [{"lang": "en", "value": "\n    There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.\n    "}], "providerMetadata": {"orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "shortName": "suse", "dateUpdated": "2025-11-14T00:00:00Z", "x_subShortName": "suse_server_16"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "amazon", "product": "cargo", "versions": [{"status": "affected", "version": "0", "lessThan": "1.86.0-1.amzn2.0.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "clippy", "versions": [{"status": "affected", "version": "0", "lessThan": "1.86.0-1.amzn2.0.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "3.7.17-8.amzn2.1.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust", "versions": [{"status": "affected", "version": "0", "lessThan": "1.86.0-1.amzn2.0.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-analyzer", "versions": [{"status": "affected", "version": "0", "lessThan": "1.86.0-1.amzn2.0.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-debugger-common", "versions": [{"status": "affected", "version": "0", "lessThan": "1.86.0-1.amzn2.0.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "1.86.0-1.amzn2.0.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-gdb", "versions": [{"status": "affected", "version": "0", "lessThan": "1.86.0-1.amzn2.0.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-src", "versions": [{"status": "affected", "version": "0", "lessThan": "1.86.0-1.amzn2.0.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-std-static", "versions": [{"status": "affected", "version": "0", "lessThan": "1.86.0-1.amzn2.0.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-toolset", "versions": [{"status": "affected", "version": "0", "lessThan": "1.86.0-1.amzn2.0.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-toolset-srpm-macros", "versions": [{"status": "affected", "version": "0", "lessThan": "1.86.0-1.amzn2.0.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rustfmt", "versions": [{"status": "affected", "version": "0", "lessThan": "1.86.0-1.amzn2.0.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "3.7.17-8.amzn2.1.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "3.7.17-8.amzn2.1.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "3.7.17-8.amzn2.1.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "3.7.17-8.amzn2.1.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-tcl", "versions": [{"status": "affected", "version": "0", "lessThan": "3.7.17-8.amzn2.1.3", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "thunderbird", "versions": [{"status": "affected", "version": "0", "lessThan": "128.11.1-1.amzn2.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "thunderbird-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "128.11.1-1.amzn2.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}], "references": [{"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6965"}], "descriptions": [{"lang": "en", "value": "There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above."}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000000", "shortName": "alas", "dateUpdated": "2025-07-29T23:18:00Z", "x_subShortName": "alas_2"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "amazon", "product": "cargo", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "cargo-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "clippy", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "clippy-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "lemon", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "lemon-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "nodejs22", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.18.0-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "nodejs22-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.18.0-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "nodejs22-debugsource", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.18.0-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "nodejs22-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.18.0-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "nodejs22-docs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.18.0-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "nodejs22-full-i18n", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.18.0-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "nodejs22-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.18.0-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "nodejs22-libs-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "1:22.18.0-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "nodejs22-npm", "versions": [{"status": "affected", "version": "0", "lessThan": "1:10.9.3-1.22.18.0.1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-analyzer", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-analyzer-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-debugger-common", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-debugsource", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-gdb", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-lldb", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-src", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-std-static", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-std-static-wasm32-unknown-unknown", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-std-static-wasm32-wasip1", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-toolset", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rust-toolset-srpm-macros", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rustfmt", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "rustfmt-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "1.89.0-1.amzn2023.0.2", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-analyzer", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-analyzer-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-debugsource", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-libs", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-libs-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-tcl", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-tcl-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-tools", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "sqlite-tools-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "3.40.0-1.amzn2023.0.6", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "v8-12.4-devel", "versions": [{"status": "affected", "version": "0", "lessThan": "3:12.4.254.21-1.22.18.0.1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}], "references": [{"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6965"}], "descriptions": [{"lang": "en", "value": "There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above."}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000000", "shortName": "alas", "dateUpdated": "2025-08-05T23:14:00Z", "x_subShortName": "alas_2023"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "unknown", "product": "unknown", "defaultStatus": "unknown"}], "solutions": [{"lang": "en", "value": "SUSE bug 1246597"}], "references": [{"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6965", "name": "Mitre CVE-2025-6965"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001851.html", "name": "RHSA-2025:11802"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001848.html", "name": "RHSA-2025:11803"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001854.html", "name": "RHSA-2025:11992"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001847.html", "name": "RHSA-2025:12010"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-August/001873.html", "name": "RHSA-2025:12349"}, {"url": "https://www.suse.com/security/cve/CVE-2025-6965", "name": "SUSE CVE-2025-6965"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041082.html", "name": "SUSE-SU-2025:02672-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041155.html", "name": "SUSE-SU-2025:02744-1"}, {"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-August/022318.html", "name": "SUSE-SU-2025:20561-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-September/041627.html", "name": "SUSE-SU-2025:20674-1"}], "descriptions": [{"lang": "en", "value": "\n    There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.\n    "}], "providerMetadata": {"orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "shortName": "suse", "dateUpdated": "2025-07-18T00:00:00Z", "x_subShortName": "suse_server_12"}}], "cna": {"metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"cpes": ["cpe:2.3:a:sqlite:sqlite:*:*:*:*:*:*:*:*"], "vendor": "sqlite", "product": "sqlite", "versions": [{"status": "affected", "version": "0", "lessThan": "3.50.2", "versionType": "custom"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8", "tags": ["patch"]}, {"url": "http://seclists.org/fulldisclosure/2025/Sep/49"}, {"url": "http://seclists.org/fulldisclosure/2025/Sep/53"}, {"url": "http://seclists.org/fulldisclosure/2025/Sep/56"}, {"url": "http://seclists.org/fulldisclosure/2025/Sep/57"}, {"url": "http://seclists.org/fulldisclosure/2025/Sep/58"}, {"url": "http://www.openwall.com/lists/oss-security/2025/09/06/1"}], "descriptions": [{"lang": "en", "value": "There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above."}, {"lang": "es", "value": "Existe una vulnerabilidad en las versiones de SQLite anteriores a la 3.50.2 donde el número de términos agregados podría exceder el número de columnas disponibles. Esto podría causar un problema de corrupción de memoria. Recomendamos actualizar a la versión 3.50.2 o superior."}], "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-197", "description": "CWE-197"}]}], "x_remediations": {"windows": [{"type": "update", "anyOf": ["KB5073379", "KB5075899", "KB5077181", "KB5077241", "KB5077793", "KB5078135", "KB5078740", "KB5079391", "KB5079473", "KB5085516", "KB5086672"], "products": ["Windows Server 2025", "Windows Server 2025 (Server Core installation)"]}, {"type": "update", "anyOf": ["KB5073450", "KB5075897", "KB5077792", "KB5078133", "KB5078734"], "products": ["Windows Server 2022, 23H2 Edition (Server Core installation)"]}, {"type": "update", "anyOf": ["KB5073455", "KB5075941", "KB5077797", "KB5078132", "KB5078883"], "products": ["Windows 11 Version 23H2 for ARM64-based Systems", "Windows 11 Version 23H2 for x64-based Systems"]}, {"type": "update", "anyOf": ["KB5073457", "KB5075906", "KB5077800", "KB5078136", "KB5078766", "KB5082314"], "products": ["Windows Server 2022", "Windows Server 2022 (Server Core installation)"]}, {"type": "update", "anyOf": ["KB5073722", "KB5075999", "KB5078938"], "products": ["Windows 10 Version 1607 for 32-bit Systems", "Windows 10 Version 1607 for x64-based Systems", "Windows Server 2016", "Windows Server 2016 (Server Core installation)"]}, {"type": "update", "anyOf": ["KB5073723", "KB5075904", "KB5077795", "KB5078131", "KB5078752"], "products": ["Windows 10 Version 1809 for 32-bit Systems", "Windows 10 Version 1809 for x64-based Systems", "Windows Server 2019", "Windows Server 2019 (Server Core installation)"]}, {"type": "update", "anyOf": ["KB5073724", "KB5075912", "KB5077796", "KB5078129", "KB5078885"], "products": ["Windows 10 Version 21H2 for 32-bit Systems", "Windows 10 Version 21H2 for ARM64-based Systems", "Windows 10 Version 21H2 for x64-based Systems", "Windows 10 Version 22H2 for 32-bit Systems", "Windows 10 Version 22H2 for ARM64-based Systems", "Windows 10 Version 22H2 for x64-based Systems"]}, {"type": "update", "anyOf": ["KB5074105", "KB5074109", "KB5075899", "KB5077181", "KB5077241", "KB5077744", "KB5078127", "KB5078740", "KB5079391", "KB5079473", "KB5085516", "KB5086672"], "products": ["Windows 11 Version 24H2 for ARM64-based Systems", "Windows 11 Version 24H2 for x64-based Systems", "Windows 11 Version 25H2 for ARM64-based Systems", "Windows 11 Version 25H2 for x64-based Systems"]}]}, "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000003", "shortName": "nvd", "dateUpdated": "2025-07-15T14:15:31Z", "x_subShortName": "nvd"}}}, "cveMetadata": {"cveId": "CVE-2025-6965", "state": "PUBLISHED", "dateUpdated": "2025-11-04T22:16:43Z", "assignerOrgId": "14ed7db2-1595-443d-9d34-6215bf890778", "datePublished": "2025-07-15T14:15:31Z", "assignerShortName": "Google"}, "dataVersion": "5.0"}