[CLSA-2026:1782809093] Fix CVE(s): CVE-2026-11822, CVE-2026-11824

Type:

security

Severity:

Important

Release date:

2026-06-30 08:45:11 UTC

Description:

   * SECURITY UPDATE: heap buffer overflow in FTS5 corrupt-record handling
     - debian/patches/CVE-2026-11822-and-11824.patch: reject leaf pages with
       szLeaf < 4 in fts5LeafRead() in ext/fts5/fts5_index.c, closing the
       out-of-bounds read / heap buffer overflow paths in fts5ChunkIterate()
       and fts5LeafSeek().
     - CVE-2026-11822
     - CVE-2026-11824

CVEs fixed:

Updated packages:

lemon_3.31.1-4ubuntu0.7+tuxcare.els2_amd64.deb
sha:ab831f83e7a68cd7092e89796f62ee21e760717c
libsqlite3-0_3.31.1-4ubuntu0.7+tuxcare.els2_amd64.deb
sha:27de5713b56400ada88e64adab52f681e3a58266
libsqlite3-dev_3.31.1-4ubuntu0.7+tuxcare.els2_amd64.deb
sha:0c2cf2b7fd85f2adb6f0dfc504d856c890f8d2c0
libsqlite3-tcl_3.31.1-4ubuntu0.7+tuxcare.els2_amd64.deb
sha:b8a630d65de7547e56c16ff19890b79dd1b58f65
sqlite3_3.31.1-4ubuntu0.7+tuxcare.els2_amd64.deb
sha:a938df65f41e43280936b571169759877d6b8143
sqlite3-doc_3.31.1-4ubuntu0.7+tuxcare.els2_all.deb
sha:40c36394b28245c92f301a71fd883ca185675efb

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.