CVE-2025-7709

An integer overflow exists in the FTS5 https://sqlite.org/fts5.html extension. It occurs when the size of an array of tombstone pointers is calculated and truncated into a 32-bit integer. A pointer to partially controlled data can then be written out of bounds.

https://github.com/l3montree-dev/devguard-action/issues/225

Open

LOW (1.8)

System detected CVE-2025-7709 with a risk of 1.8
0.15.1
System detected CVE-2025-7709 with a risk of 1.8
0.15.1
System detected CVE-2025-7709 with a risk of 1.8
0.15.1
System detected CVE-2025-7709 with a risk of 1.8
0.15.1
System created a ticket for CVE-2025-7709
main
Everything after this entry will be synced with the external system. The ticket can be found at https://github.com/l3montree-dev/devguard-action/issues/224
System created a ticket for CVE-2025-7709
main
Everything after this entry will be synced with the external system. The ticket can be found at https://github.com/l3montree-dev/devguard-action/issues/225

Add a comment

Comment will be synced with https://github.com/l3montree-dev/devguard-action/issues/225

Last calculated at:

Affected component

debian/sqlite3

Installed version:

3.40.1

Fixed in:

no patch available

Show in dependency graph

🛡️ DevGuard
Group
/🧩 DevGuard Action
Repository

CVE-2025-7709

Add a comment

Affected component

Management decisions across the organization