]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core-contrib.git/commit
projects / thirdparty / openembedded / openembedded-core-contrib.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4d5093e) | patch
sqlite3: ignore CVE-2025-3277
authorPeter Marko <peter.marko@siemens.com>
Sun, 3 Aug 2025 19:17:38 +0000 (21:17 +0200)
committerSteve Sakoman <steve@sakoman.com>
Mon, 4 Aug 2025 13:48:21 +0000 (06:48 -0700)
commitebacd5cd2827c1a9a45a92353518f9d976597526
tree8532da342dca18c3d99edd4d4b9594758a7ab226tree | snapshot
parent4d5093e5103016c08b3a32fd83b1ec9edd87cd5acommit | diff
sqlite3: ignore CVE-2025-3277

The vulnerable code was introduced in 3.44.0 via [1].
(See fix commit [2])
Also Debian says "not vulnerabele yet for 3.40.1 in [3]

[1] https://github.com/sqlite/sqlite/commit/e1e67abc5cf67f931aab1e471eda23d73f51d456
[2] https://sqlite.org/src/info/498e3f1cf57f164f
[3] https://security-tracker.debian.org/tracker/CVE-2025-3277

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-support/sqlite/sqlite3_3.38.5.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core-contrib