chn/nixpkgs
1
0
Fork 0
mirror of https://github.com/CHN-beta/nixpkgs.git synced 2026-01-12 02:40:31 +08:00
Code Issues Packages Projects Releases Wiki Activity

sqlite3: apply patch for CVE-2025-29087/CVE-2025-29087

Browse Source 
Equivalent to #413983 that went on 24.11.
Applying only the patch seemed the safe play given the build
system changes that went in #398702.
This commit is contained in:
Thomas Gerbet
2025-06-15 01:08:52 +02:00
committed by Thomas Gerbet
parent 476fe7d0d1
commit 58982ec414
2 changed files with 14 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
pkgs/development/libraries/sqlite/CVE-2025-3277_CVE-2025-29087.patch Normal file
View File

@@ -0,0 +1,11 @@
--- a/sqlite3.c
+++ b/sqlite3.c
@@ -1570,7 +1570,7 @@ static void concatFuncCore(
for(i=0; i<argc; i++){
n += sqlite3_value_bytes(argv[i]);
}
- n += (argc-1)*nSep;
+ n += (argc-1)*(i64)nSep;
z = sqlite3_malloc64(n+1);
if( z==0 ){
sqlite3_result_error_nomem(context);

3
pkgs/development/libraries/sqlite/default.nix
View File

@@ -50,6 +50,9 @@ stdenv.mkDerivation rec {
# https://sqlite.org/src/info/d7c07581
# TODO: Remove in 3.49.0
./3.48.0-fk-conflict-handling.patch
# https://sqlite.org/src/info/2025-02-16T10:57z
./CVE-2025-3277_CVE-2025-29087.patch
];
outputs = [