SQLite
Moderate fix1 remedy
cpe:2.3:a:sqlite:sqlite:*:*:*:*:*:*:*
Moderate fix1 remedy
- >= 3.39.2, <= 3.41.1
SQLite Integer Overflow Vulnerability in Key Info Function Allowing Denial-of-Service and Memory Information Disclosure
Vulnerability
Patched
An integer overflow vulnerability has been identified in the sqlite3KeyInfoFromExprList function of SQLite. This issue affects versions 3.39.2 through 3.41.1. The vulnerability allows an attacker who can execute arbitrary SQL statements to cause a denial-of-service condition or disclose sensitive information from process memory. This is achieved by crafting a SELECT statement that includes a large number of expressions in the ORDER BY clause.
Impact
Exploitation of this vulnerability leads to a heap buffer overflow, causing a segmentation fault and allowing for potential arbitrary code execution.
Reproduction
The vulnerability can be reproduced by compiling SQLite with AFL++ and AddressSanitizer enabled, and then executing a SELECT statement with an excessive number of expressions in the ORDER BY clause. This can be done using the SQLite command-line interface.
Remediation
Users are advised to update to the latest version of SQLite, as this vulnerability has been fixed in the most recent release.
Added: Jul 29, 2025, 1:17 PM
Updated: Jul 29, 2025, 2:17 PM
Vulnerability Rating
Custom Algorithm
spread
9.0impact
5.0exploitability
6.0remediation
7.7relevance
0.3threat
6.4urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.