SQLite 3.39

Status EOLSupport 2022-06 – 2022-11Latest 3.39.4Vulnerabilities 7← All SQLite versions
Critical 9.8 Unfixed
2025-07-15≤ 3.39.4

Integer Truncation on SQLite

CVE
Critical 9.1 Unfixed
2025-07-29≥ 3.39.2 and ≤ 3.39.2

SQLite integer overflow in key info allocation may lead to information disclosure.

CVE
High 7.5 Unfixed
2026-03-12≤ 3.39.4

sqlite: SQLite: Information Disclosure via Crafted ZIP File

CVE
High 7.5
2022-08-03< 3.39.2

sqlite: an array-bounds overflow if billions of bytes are used in a string argument to a C API

CVE
High 7.3
2022-12-12≤ 3.39.4

sqlite: safe mode authorizer callback allows disallowed UDFs

CVE
Medium 5.5 Unfixed
2023-12-25≤ 3.39.4

SQLite SQLite3 make alltest sqlite3session.c sessionReadRecord heap-based overflow

CVE
Medium 4.7 Unfixed
2024-01-16≤ 3.39.4

Sqlite: use-after-free bug in jsonparseaddnodearray

CVE