CVE-2025-29088

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://gist.github.com/ylwango613/d3883fb9f6ba8a78086356779ce88248", "name": "https://gist.github.com/ylwango613/d3883fb9f6ba8a78086356779ce88248", "tags": ["Third Party Advisory"], "refsource": ""}, {"url": "https://github.com/sqlite/sqlite/commit/56d2fd008b108109f489339f5fd55212bb50afd4", "name": "https://github.com/sqlite/sqlite/commit/56d2fd008b108109f489339f5fd55212bb50afd4", "tags": ["Patch"], "refsource": ""}, {"url": "https://sqlite.org/forum/forumpost/48f365daec", "name": "https://sqlite.org/forum/forumpost/48f365daec", "tags": ["Third Party Advisory"], "refsource": ""}, {"url": "https://sqlite.org/releaselog/3_49_1.html", "name": "https://sqlite.org/releaselog/3_49_1.html", "tags": ["Release Notes"], "refsource": ""}, {"url": "https://www.sqlite.org/cves.html", "name": "https://www.sqlite.org/cves.html", "tags": ["Vendor Advisory"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "In SQLite 3.49.0 before 3.49.1, certain argument values to sqlite3_db_config (in the C-language API) can cause a denial of service (application crash). An sz*nBig multiplication is not cast to a 64-bit integer, and consequently some memory allocations may be incorrect."}]}, "problemtype": {"problemtype_data": [{"description": []}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2025-29088", "ASSIGNER": "cve@mitre.org"}}, "impact": {}, "publishedDate": "2025-04-10T14:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:sqlite:sqlite:3.49.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-04-30T16:40Z"}