sqlite-devel (AlmaLinux:8) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:8 package sqlite-devel, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (11)
CVE-2020-35527 — CVSS 9.8 (critical): In SQLite 3.31.1, there is an out of bounds access problem through ALTER TABLE for views that have a nested FROM clause.
CVE-2019-5827 — CVSS 8.8 (high): Integer overflow in SQLite via WebSQL in Google Chrome prior to 74.0.3729.131 allowed a remote attacker to potentially exploit heap…
CVE-2025-6965 — CVSS 7.7 (high): There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns…
CVE-2020-35525 — CVSS 7.5 (high): In SQlite 3.31.1, a potential null pointer derreference was found in the INTERSEC query processing.
CVE-2019-19603 — CVSS 7.5 (high): SQLite 3.30.1 mishandles certain SELECT statements with a nonexistent VIEW, leading to an application crash.
CVE-2022-35737 — CVSS 7.5 (high): SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to…
CVE-2019-13750 — CVSS 6.5 (medium): Insufficient data validation in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass defense-in-depth measures…
CVE-2019-13751 — CVSS 6.5 (medium): Uninitialized data in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to obtain potentially sensitive information…
CVE-2020-24736 — CVSS 5.5 (medium): Buffer Overflow vulnerability found in SQLite3 v.3.27.1 and before allows a local attacker to cause a denial of service via a crafted…
CVE-2023-7104 — CVSS 5.5 (medium): A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classified as critical. This issue affects the function sessionReadRecord of…