VDB
ALPINE-CVE-2025-29087
ALPINE-CVE-2025-29087
PUBLISHED
CVSS 7.5 HIGH
In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concat_ws() SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string (e.g., 2MB or more), an integer overflow occurs in calculating the size of the result buffer, and thus malloc may not allocate enough memory.
Risk Scores
CVSS v3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.20 | sqlite | 0, 3.9.2-r2, 3.9.1-r2 |
| Alpine:v3.19 | sqlite | 3.7.14.1-r2, 3.10.2-r2, 3.11.0-r2 |
| Alpine:v3.21 | sqlite | 3.42.0-r1, 3.41.2-r2, 3.41.2-r1 |
Timeline
- Apr 7, 2025 CVE Published
- Nov 19, 2025 CVE Updated
- Apr 30, 2026 Distribution Patch