FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-08-29 03:34:00 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
0f5bcba2-67fb-11f0-9ee5-b42e991fc52esqlite -- Integer Truncation on SQLite

cve-coordination@google.com reports:

There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue.


Discovery 2025-07-15
Entry 2025-07-23
Modified 2025-08-01
sqlite3
< 3.50.2,1

linux-c7-sqlite
< 3.50.2

linux_base-rl9
>= 0

CVE-2025-6965
https://nvd.nist.gov/vuln/detail/CVE-2025-6965
b945ce3f-6f9b-11f0-bd96-b42e991fc52esqlite -- integer overflow

cve-coordination@google.com reports:

An integer overflow can be triggered in SQLites `concat_ws()` function. The resulting, truncated integer is then used to allocate a buffer. When SQLite then writes the resulting string to the buffer, it uses the original, untruncated size and thus a wild Heap Buffer overflow of size ~4GB can be triggered. This can result in arbitrary code execution.


Discovery 2025-04-14
Entry 2025-08-02
sqlite3
< 3.49.1

linux-c7-sqlite
< 3.49.1

linux_base-rl9
< 3.49.1

CVE-2025-3277
https://nvd.nist.gov/vuln/detail/CVE-2025-3277