FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-11-18 10:11:03 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
0f5bcba2-67fb-11f0-9ee5-b42e991fc52e	sqlite -- Integer Truncation on SQLite cve-coordination@google.com reports: There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. Discovery 2025-07-15 Entry 2025-07-23 Modified 2025-09-07 sqlite3 < 3.50.2,1 linux-c7-sqlite < 3.50.2 linux_base-rl9 >= 9.5.14 lt 9.6_1 linux-rl9-sqlite3 >= 0 CVE-2025-6965 https://nvd.nist.gov/vuln/detail/CVE-2025-6965
c5889223-b4e1-11f0-ae9b-b42e991fc52e	SQLite < 3.50.3 -- CWE-190 Integer Overflow or Wraparound in FTS5 module https://github.com/google/security-research/security/advisories/GHSA-v2c8-vqqp-hv3g reports: An integer overflow exists in the FTS5 https://sqlite.org/fts5.html extension. It occurs when the size of an array of tombstone pointers is calculated and truncated into a 32-bit integer. A pointer to partially controlled data can then be written out of bounds. The FreeBSD build enables the FTS5 extension by default. Discovery 2025-07-15 Entry 2025-10-29 Modified 2025-11-07 sqlite3 >= 3.49.1,1 lt 3.50.3,1 linux_base-rl9 >= 0 linux-c7-sqlite < 3.50.3 CVE-2025-7709 https://cveawg.mitre.org/api/cve/CVE-2025-7709

VuXML ID

Description

0f5bcba2-67fb-11f0-9ee5-b42e991fc52e

sqlite -- Integer Truncation on SQLite

cve-coordination@google.com reports:

There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue.

Discovery 2025-07-15
Entry 2025-07-23
Modified 2025-09-07
sqlite3

< 3.50.2,1

linux-c7-sqlite

< 3.50.2

linux_base-rl9

>= 9.5.14 lt 9.6_1

linux-rl9-sqlite3

>= 0

CVE-2025-6965
https://nvd.nist.gov/vuln/detail/CVE-2025-6965

c5889223-b4e1-11f0-ae9b-b42e991fc52e

SQLite < 3.50.3 -- CWE-190 Integer Overflow or Wraparound in FTS5 module

https://github.com/google/security-research/security/advisories/GHSA-v2c8-vqqp-hv3g reports:

An integer overflow exists in the FTS5 https://sqlite.org/fts5.html extension. It occurs when the size of an array of tombstone pointers is calculated and truncated into a 32-bit integer. A pointer to partially controlled data can then be written out of bounds.

The FreeBSD build enables the FTS5 extension by default.

Discovery 2025-07-15
Entry 2025-10-29
Modified 2025-11-07
sqlite3

>= 3.49.1,1 lt 3.50.3,1

linux_base-rl9

>= 0

linux-c7-sqlite

< 3.50.3

CVE-2025-7709
https://cveawg.mitre.org/api/cve/CVE-2025-7709