CVE-2025-6965:  SQLite version on the alpine base images

There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.

Links

- https://access.redhat.com/errata/RHSA-2025:11803
- https://access.redhat.com/security/cve/CVE-2025-6965
- https://bugzilla.redhat.com/2380149
- https://errata.almalinux.org/8/ALSA-2025-11803.html
- https://linux.oracle.com/errata/ELSA-2025-12010.html
- https://nvd.nist.gov/vuln/detail/CVE-2025-6965
- https://ubuntu.com/security/notices/USN-7676-1
- https://www.cve.org/CVERecord?id=CVE-2025-6965
- https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8

Identifiers

- [CVE-2025-6965](https://access.redhat.com/errata/RHSA-2025:11803)

Could you please help us to upgrade the image and resolve the vulnerability? Thank you

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

CVE-2025-6965: SQLite version on the alpine base images #1064

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

CVE-2025-6965: SQLite version on the alpine base images #1064

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions