CVE Vulnerabilities

CVE-2025-6965

Numeric Truncation Error

Published: Jul 15, 2025 | Modified: Jul 22, 2025
CVSS 3.x
9.8
CRITICAL
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
7.7 IMPORTANT
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L
Ubuntu
MEDIUM

There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.

Weakness

Truncation errors occur when a primitive is cast to a primitive of a smaller size and data is lost in the conversion.

Affected Software

Name Vendor Start Version End Version
Sqlite Sqlite * 3.50.2 (excluding)
Red Hat Enterprise Linux 10 RedHat sqlite-0:3.46.1-5.el10_0 *
Red Hat Enterprise Linux 7 Extended Lifecycle Support RedHat sqlite-0:3.7.17-9.el7_9.1 *
Red Hat Enterprise Linux 8 RedHat nodejs:22-8100020250717142920.6d880403 *
Red Hat Enterprise Linux 8 RedHat sqlite-0:3.26.0-20.el8_10 *
Red Hat Enterprise Linux 8 RedHat sqlite-0:3.26.0-20.el8_10 *
Red Hat Enterprise Linux 8.2 Advanced Update Support RedHat sqlite-0:3.26.0-6.el8_2.1 *
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support RedHat sqlite-0:3.26.0-13.el8_4.1 *
Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On RedHat sqlite-0:3.26.0-13.el8_4.1 *
Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support RedHat sqlite-0:3.26.0-16.el8_6.3 *
Red Hat Enterprise Linux 8.6 Telecommunications Update Service RedHat sqlite-0:3.26.0-16.el8_6.3 *
Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions RedHat sqlite-0:3.26.0-16.el8_6.3 *
Red Hat Enterprise Linux 8.8 Telecommunications Update Service RedHat sqlite-0:3.26.0-18.el8_8.2 *
Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions RedHat sqlite-0:3.26.0-18.el8_8.2 *
Red Hat Enterprise Linux 9 RedHat nodejs:22-9060020250721113755.rhel9 *
Red Hat Enterprise Linux 9 RedHat sqlite-0:3.34.1-8.el9_6 *
Red Hat Enterprise Linux 9 RedHat sqlite-0:3.34.1-8.el9_6 *
Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions RedHat sqlite-0:3.34.1-5.el9_0.1 *
Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions RedHat sqlite-0:3.34.1-6.el9_2.2 *
Red Hat Enterprise Linux 9.4 Extended Update Support RedHat sqlite-0:3.34.1-7.el9_4.1 *
Red Hat Discovery 2 RedHat registry.redhat.io/discovery/discovery-server-rhel9:sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344 *
Red Hat Insights proxy 1.5 RedHat registry.redhat.io/insights-proxy/insights-proxy-container-rhel9:sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d *
Sqlite3 Ubuntu devel *
Sqlite3 Ubuntu esm-infra-legacy/trusty *
Sqlite3 Ubuntu esm-infra/bionic *
Sqlite3 Ubuntu esm-infra/focal *
Sqlite3 Ubuntu esm-infra/xenial *
Sqlite3 Ubuntu jammy *
Sqlite3 Ubuntu noble *
Sqlite3 Ubuntu plucky *

Potential Mitigations

References