CVE-2025-6965 - CRITICAL vulnerability found in sqlite-libs@3.49.2-r0

When running trivy against version 1.30.7, it outputs the following vulnerability.:

| Library     | Vulnerability | Severity | Status | Installed Version | Fixed Version | Title                                                                                                                          |
|-------------|---------------|----------|--------|-------------------|---------------|--------------------------------------------------------------------------------------------------------------------------------|
| sqlite-libs | CVE-2025-6965 | CRITICAL | fixed  | 3.49.2-r0         | 3.49.2-r1     | sqlite: Integer Truncation in SQLite<br>[https://avd.aquasec.com/nvd/cve-2025-6965](https://avd.aquasec.com/nvd/cve-2025-6965) |

**Recommendation from the report:**
Upgrade to version 3.50.2 or above

**Steps to reproduce:**
1. Ensure [Trivy](https://trivy.dev/latest/getting-started/installation/) is installed.
2. Run the following command:
    `trivy image  --ignore-unfixed --exit-code 1 --severity CRITICAL quay.io/kiwigrid/k8s-sidecar:1.30.7`

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

CVE-2025-6965 - CRITICAL vulnerability found in [email protected] #407

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

CVE-2025-6965 - CRITICAL vulnerability found in [email protected] #407

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions