Medium severityNVD Advisory· Published Sep 8, 2025· Updated Apr 15, 2026
CVE-2025-7709
CVE-2025-7709
Description
An integer overflow exists in the FTS5 https://sqlite.org/fts5.html extension. It occurs when the size of an array of tombstone pointers is calculated and truncated into a 32-bit integer. A pointer to partially controlled data can then be written out of bounds.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
15- osv-coords14 versionspkg:rpm/opensuse/sqlite3&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/sqlite3&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/sqlite3&distro=openSUSE%20Tumbleweedpkg:rpm/suse/sqlite3&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/sqlite3&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/sqlite3&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/sqlite3&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/sqlite3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/sqlite3&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/sqlite3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/sqlite3&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/sqlite3&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/sqlite3&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/sqlite3&distro=SUSE%20Linux%20Micro%206.2
< 3.51.2-150000.3.36.1+ 13 more
- (no CPE)range: < 3.51.2-150000.3.36.1
- (no CPE)range: < 3.51.3-160000.1.1
- (no CPE)range: < 3.51.2-1.1
- (no CPE)range: < 3.51.2-150000.3.36.1
- (no CPE)range: < 3.51.2-150000.3.36.1
- (no CPE)range: < 3.51.2-150000.3.36.1
- (no CPE)range: < 3.51.2-150000.3.36.1
- (no CPE)range: < 3.51.2-150000.3.36.1
- (no CPE)range: < 3.51.3-160000.1.1
- (no CPE)range: < 3.51.3-160000.1.1
- (no CPE)range: < 3.51.2-9.44.1
- (no CPE)range: < 3.51.3-1.1
- (no CPE)range: < 3.51.3-slfo.1.1_1.1
- (no CPE)range: < 3.51.3-160000.1.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.