FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2026-03-03 16:31:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
b945ce3f-6f9b-11f0-bd96-b42e991fc52e	sqlite -- integer overflow cve-coordination@google.com reports: An integer overflow can be triggered in SQLites `concat_ws()` function. The resulting, truncated integer is then used to allocate a buffer. When SQLite then writes the resulting string to the buffer, it uses the original, untruncated size and thus a wild Heap Buffer overflow of size ~4GB can be triggered. This can result in arbitrary code execution. Discovery 2025-04-14 Entry 2025-08-02 sqlite3 < 3.49.1,1 linux-c7-sqlite < 3.49.1 linux_base-rl9 < 3.49.1 CVE-2025-3277 https://nvd.nist.gov/vuln/detail/CVE-2025-3277

VuXML ID

Description

b945ce3f-6f9b-11f0-bd96-b42e991fc52e

sqlite -- integer overflow

cve-coordination@google.com reports:

An integer overflow can be triggered in SQLites `concat_ws()` function. The resulting, truncated integer is then used to allocate a buffer. When SQLite then writes the resulting string to the buffer, it uses the original, untruncated size and thus a wild Heap Buffer overflow of size ~4GB can be triggered. This can result in arbitrary code execution.

Discovery 2025-04-14
Entry 2025-08-02
sqlite3

< 3.49.1,1

linux-c7-sqlite

< 3.49.1

linux_base-rl9

< 3.49.1

CVE-2025-3277
https://nvd.nist.gov/vuln/detail/CVE-2025-3277