a754a7d125- Update to version 3.50.3: * Fix a possible memory error that can occur if a query is made against against FTS5 index that has been deliberately corrupted in a very specific way. * Fix the parser so that it ignored SQL comments in all places of a CREATE TRIGGER statement. This resolves a problem that was introduced by the introduction of the SQLITE_DBCONFIG_ENABLE_COMMENTS feature in version 3.49.0. * Fix an incorrect answer due to over-optimization of an AND operator.
devel
Reinhard Max2025-07-17 17:13:35 +00:00
09b7266c87Accepting request 1289540 from server:databaseAna Guerrero2025-07-02 10:07:37 +00:00
6d54976c99- Update to 3.50.2: * Fix the concat_ws() SQL function so that it includes empty strings in the concatenation. * Avoid writing frames with no checksums into the wal file if a savepoint is rolled back after dirty pages have already been spilled into the wal file. * Fix the Bitvec object to avoid stack overflow when the database is within 60 pages of its maximum size. * Fix a problem with UPDATEs on fts5 tables that contain BLOB values. * Fix an issue with transitive IS constraints on a RIGHT JOIN. * Raise an error early if the number of aggregate terms in a query exceeds the maximum number of columns, to avoid downstream assertion faults. * Ensure that sqlite3_setlk_timeout() holds the database mutex.Reinhard Max2025-07-01 12:10:41 +00:00
5171e771f8Accepting request 1284363 from server:databaseAna Guerrero2025-06-11 14:20:21 +00:00
ced6e85a28Accepting request 1277474 from server:databaseAna Guerrero2025-05-15 14:59:27 +00:00
19e8712ccb* CVE-2025-29087, CVE-2025-3277, bsc#1241020: Fix a bug in the concat_ws() function, introduced in version 3.44.0, that could lead to a memory error if the separator string is very large (hundreds of megabytes).Reinhard Max2025-05-07 15:22:08 +00:00
7d9762454b- Update to release 3.49.2: * Fix a bug in the NOT NULL optimization of version 3.40.0 that can lead to a memory error if abused. * Fix the count-of-view optimization so that it does not give an incorrect answer for a DISTINCT query. * Fix a possible incorrect answer that can result if a UNIQUE constraint of a table contains the PRIMARY KEY column and that UNIQUE constraint is used by an IN operator. * Fix obscure problems with the generate_series() extension function. * Incremental improvements to the configure/make.Reinhard Max2025-05-07 13:40:35 +00:00
724225cf0f- Add subpackage for the lemon parser generator. - Add patches: * sqlite-3.49.0-fix-lemon-missing-cflags.patch * sqlite-3.6.23-lemon-system-template.patchReinhard Max2025-04-30 13:20:37 +00:00
deeffb5d39Accepting request 1269271 from server:databaseAna Guerrero2025-04-14 14:50:24 +00:00
390ca62f46- Update to release 3.49.1: * CVE-2025-29087, bsc#1241020: Fix a bug in the concat_ws() function, introduced in version 3.44.0, that could lead to a memory error if the separator string is very large (hundreds of megabytes). * CVE-2025-29088, bsc#1241078: Enhanced the SQLITE_DBCONFIG_LOOKASIDE interface to make it more robust against misuse.Reinhard Max2025-04-14 13:11:09 +00:00
8ae5b9ea52Accepting request 1254257 from server:databaseAna Guerrero2025-03-20 18:24:36 +00:00
9306848e4a- Mark build recipe as POSIX-sh-incompatible - fix a group value - Run mkdir/rm with verbose mode for the build logReinhard Max2025-03-17 16:00:01 +00:00
8725945cdaAccepting request 1247001 from server:databaseAna Guerrero2025-02-20 15:27:15 +00:00
9108edb4eb- Update to release 3.19.1: * Improve portability of makefiles and configure scripts. * Fix a bug in the concat_ws() function, introduced in version 3.44.0, that could lead to a memory error if the separator string is very large (hundreds of megabytes). * Enhanced the SQLITE_DBCONFIG_LOOKASIDE interface to make it more robust against misuse.Reinhard Max2025-02-18 17:15:54 +00:00
86cb95cd4f- Update to release 3.48.0: * Enhancements to the query planner: - Improve the query-time index optimization so that it works on WITHOUT ROWID tables. - Better query plans for large star-query joins. This fixes three different performance regressions that were reported on the SQLite Forum. - When two or more queries have the same estimated cost, use the one with the fewer bytes per row. * Enhance the iif() SQL function so that it can accept any number of arguments greater than or equal to two. * Enhance the session extension so that it works on databases that make use of generated columns. * Omit the SQLITE_USE_STDIO_FOR_CONSOLE compile-time option which was not implemented correctly and never worked right. In its place add the SQLITE_USE_W32_FOR_CONSOLE_IO compile-time option. This option applies to command-line tools like the CLI only, not to the SQLite core. It causes Win32 APIs to be used for console I/O instead of stdio. This option affects Windows builds only. * Three new options to sqlite3_db_config(). All default "on". SQLITE_DBCONFIG_ENABLE_ATTACH_CREATE SQLITE_DBCONFIG_ENABLE_ATTACH_WRITE SQLITE_DBCONFIG_ENABLE_COMMENTSReinhard Max2025-02-06 18:04:10 +00:00
a3d1837130Accepting request 1238215 from server:databaseAna Guerrero2025-01-17 17:37:15 +00:00
971ed34399- Update to release 3.48.0: * Improved EXPLAIN QUERY PLAN output for covering indexes. * Allow a two-argument version of the iif() SQL function. * Also allow if() as an alternative spelling for iif(). * Add the ".dbtotxt" command to the CLI. * Add the SQLITE_IOCAP_SUBPAGE_READ property to the xDeviceCharacteristics method of the sqlite3_io_methods object. * Add the SQLITE_PREPARE_DONT_LOG option to sqlite3_prepare_v3() that prevents warning messages being sent to the error log if the SQL is ill-formed. This allows sqlite3_prepare_v3() to be used to do test compiles of SQL to check for validity without polluting the error log with false messages. * Increase the minimum allowed value of SQLITE_LIMIT_LENGTH from 1 to 30. * Added the SQLITE_FCNTL_NULL_IO file control. * Extend the FTS5 auxiliary API xInstToken() to work with prefix queries via the insttoken configuration option and the fts5_insttoken() SQL function. * Increase the maximum number of arguments to an SQL function from 127 to 1000. * Obsoletes sqlite3-6216bfcb.patch .Reinhard Max2025-01-14 15:48:55 +00:00
f000a911f6Accepting request 1231554 from server:databaseAna Guerrero2024-12-17 18:22:37 +00:00
678f641dd2Accepting request 1229466 from server:databaseAna Guerrero2024-12-10 22:43:09 +00:00
4fc604a019- Update to release 3.47.2: * Fix a problem in text-to-floating-point conversion that affects text values where the first 16 significant digits are '1844674407370955'. This issue was introduced in 3.47.0 and only arises on x64 and i386 hardware. * Other minor bug fixes. - Enable the session extension, because NodeJS 22 needs it.Reinhard Max2024-12-09 11:54:34 +00:00
32ab9a8aaeAccepting request 1227134 from server:databaseAna Guerrero2024-11-30 12:27:12 +00:00
4ccecc7c0d- Update to release 3.47.1: * Fix the makefiles so that they once again honored DESTDIR for the "install" target. * Add the SQLITE_IOCAP_SUBPAGE_READ capability to the VFS, to work around issues on some non-standard VFSes caused by making SQLITE_DIRECT_OVERFLOW_READ the default in version 3.45.0. * Fix incorrect answers to certain obscure IN queries caused by new query optimizations added in the 3.47.0 release. * Other minor bug fixes.Reinhard Max2024-11-27 10:20:37 +00:00
cb98afc20c- Update to release 3.46.1: * Improved robustness while parsing the tokenize= arguments in FTS5. * Enhancements to covering index prediction in the query planner. * Do not let the number of terms on a VALUES clause be limited by SQLITE_LIMIT_COMPOUND_SELECT, even if the VALUES clause contains elements that appear to be variables due to double-quoted string literals. * Fix the window function version of group_concat() so that it returns an empty string if it has one or more empty string inputs. * In FTS5 secure-delete mode, fix false-positive integrity-check reports about corrupt indexes. * Syntax errors in ALTER TABLE should always return SQLITE_ERROR. In some cases, they were formerly returning SQLITE_INTERNAL. * Other minor fixes.Reinhard Max2024-09-24 11:42:43 +00:00
2a591df592Accepting request 1176758 from server:databaseAna Guerrero2024-05-28 15:27:19 +00:00
954b6b2caa- Update to release 3.46.0: * https://sqlite.org/releaselog/3_46_0.html * Enhance PRAGMA optimize in multiple ways. * Enhancements to the date and time functions. * Add support for underscore ("_") characters between digits in numeric literals. * Add the json_pretty() SQL function. * Query planner improvements. * Allocate additional memory from the heap for the SQL parser stack if that stack overflows, rather than reporting a "parser stack overflow" error. * Allow ASCII control characters within JSON5 string literals. * Fix the -> and ->> JSON operators so that when the right-hand side operand is a string that looks like an integer it is still treated as a string, because that is what PostgreSQL does. * Obsoletes sqlite3-float-i586.patch.Reinhard Max2024-05-23 19:30:28 +00:00
6d5984446fAccepting request 1169661 from server:databaseAna Guerrero2024-04-26 21:26:26 +00:00
155638d144- Update to release 3.45.3: * Fix a long-standing bug (going back to version 3.24.0) that might (rarely) cause the "old.*" values of an UPDATE trigger to be incorrect if that trigger fires in response to an UPSERT. * Reduce the scope of the NOT NULL strength reduction optimization that was added as item 8e in version 3.35.0. The optimization was being attempted in some contexts where it did not work, resulting in incorrect query results. - Add SQLITE_STRICT_SUBTYPE=1 as recommended by upstream.Reinhard Max2024-04-18 08:29:52 +00:00
6d6a8c75e3Accepting request 1158281 from server:databaseAna Guerrero2024-03-17 21:13:29 +00:00
9fe3cba2c3- Add sqlite3-float-i586.patch to fix build on i586. - sqlite3-rtree-i686.patch is not needed anymore.Reinhard Max2024-03-15 14:57:36 +00:00
0c4f7bcc97- Update to release 3.45.2: * Added the SQLITE_RESULT_SUBTYPE property for application- defined SQL functions. * Enhancements to the JSON SQL functions * Add the FTS5 tokendata option to the FTS5 virtual table. * The SQLITE_DIRECT_OVERFLOW_READ optimization is now enabled by default. * Query planner improvements * Increase the default value for SQLITE_MAX_PAGE_COUNT from 1073741824 to 4294967294. * Enhancements to the CLI * Restore the JSON BLOB input bug, and promise to support the anomaly in subsequent releases, for backward compatibility. * Fix the PRAGMA integrity_check command so that it works on read-only databases that contain FTS3 and FTS5 tables. * Fix issues associated with processing corrupt JSONB inputs. * Fix a long-standing bug in which a read of a few bytes past the end of a memory-mapped segment might occur when accessing a craftily corrupted database using memory-mapped database. * Fix a long-standing bug in which a NULL pointer dereference might occur in the bytecode engine due to incorrect bytecode being generated for a class of SQL statements that are deliberately designed to stress the query planner but which are otherwise pointless. * Fix an error in UPSERT, introduced in version 3.35.0. * Reduce the scope of the NOT NULL strength reduction optimization that was added in version 3.35.0.Reinhard Max2024-03-12 14:59:03 +00:00
f5416321bb- Update to release 3.45.1 * Details will follow... - Abort build when %version and %tarversion don't match.Reinhard Max2024-01-30 18:08:35 +00:00
94b67df5adAccepting request 1133118 from server:databaseAna Guerrero2023-12-15 20:47:09 +00:00
b8b8403beeAccepting request 1131615 from home:dimstar:FactoryReinhard Max2023-12-11 08:08:59 +00:00
88c75defdfAccepting request 1130837 from server:databaseAna Guerrero2023-12-05 16:02:45 +00:00
41cf744a23- Update to release 3.44.2 * Fix a mistake in the CLI that was introduced by the fix in 3.44.1. * Fix a problem in FTS5 that was discovered during internal fuzz testing only minutes after the 3.44.1 release was tagged. * Fix incomplete assert() statements that the fuzzer discovered. * Fix a couple of harmless compiler warnings that appeared in debug builds with GCC 16.Reinhard Max2023-11-27 18:18:37 +00:00
78d06b5581- Update to release 3.44.1 * Change the CLI so that it uses UTF-16 for console I/O on Windows. * Other obscure bug fixes.Reinhard Max2023-11-22 17:34:30 +00:00
c19bfcdb2bAccepting request 1123976 from server:databaseAna Guerrero2023-11-08 21:16:42 +00:00
89ae143f90Accepting request 1123191 from home:jengelh:branches:server:databaseReinhard Max2023-11-07 12:45:51 +00:00
1173f8e2f8Accepting request 1119230 from server:databaseAna Guerrero2023-10-20 21:16:05 +00:00
3d3f0ad76c- Update to: 3.42.2: * Fix a couple of obscure UAF errors and an obscure memory leak. * Omit the use of the sprintf() function from the standard library in the CLI, as this now generates warnings on some platforms. * Avoid conversion of a double into unsigned long long integer, as some platforms do not do such conversions correctly.Reinhard Max2023-10-10 16:05:16 +00:00
148ae3d8b6- Update to: 3.43.1 * Fix a regression in the way that the sum(), avg(), and total() aggregate functions handle infinities. * Fix a bug in the json_array_length() function that occurs when the argument comes directly from json_remove(). * Fix the omit-unused-subquery-columns optimization (introduced in in version 3.42.0) so that it works correctly if the subquery is a compound where one arm is DISTINCT and the other is not.Reinhard Max2023-09-11 14:50:47 +00:00
37c084e88bAccepting request 1106058 from home:amanzini:branches:server:database
Martin Pluskal
2023-08-31 08:06:24 +00:00
94156a4c52- Update to 3.42.0: * Add the FTS5 secure-delete command. This option causes all forensic traces to be removed from the FTS5 inverted index when content is deleted. * Enhance the JSON SQL functions to support JSON5 extensions. * The SQLITE_CONFIG_LOG and SQLITE_CONFIG_PCACHE_HDRSZ calls to sqlite3_config() are now allowed to occur after sqlite3_initialize(). * New sqlite3_db_config() options: SQLITE_DBCONFIG_STMT_SCANSTATUS and SQLITE_DBCONFIG_REVERSE_SCANORDER. * Query planner improvements. * Add the --unsafe-testing command-line option. * Allow commands ".log on" and ".log off", even in --safe mode. * "--" as a command-line argument means all subsequent arguments that start with "-" are interpreted as normal non-option argument. * Magic parameters ":inf" and ":nan" bind to floating point literals Infinity and NaN, respectively. * Add the ability for application-defined SQL functions to have the same name as join keywords: CROSS, FULL, INNER, LEFT, NATURAL, OUTER, or RIGHT. * Enhancements to PRAGMA integrity_check * Allow the session extension to be configured to capture changes from tables that lack an explicit ROWID. * Added the subsecond modifier to the date and time functions. * Negative values passed into sqlite3_sleep() are henceforth interpreted as 0. * The maximum recursion depth for JSON arrays and objects is lowered from 2000 to 1000.Reinhard Max2023-05-17 09:36:33 +00:00
e14d797334- Update to 3.41.2: * Multiple fixes for reads past the end of memory buffers * Fix the sqlite3_error_offset() so that it does not return out-of-range values when reporting errors associated with generated columns. * Multiple fixes in the query query optimizer for problems that cause incorrect results for bizarre, fuzzer-generated queries. * Increase the size of the reference counter in the page cache object to 64 bits to ensure that the counter never overflows. * Fix a performance regression caused by a bug fix in patch release 3.41.1. * Fix a few incorrect assert() statements.Reinhard Max2023-03-22 15:25:48 +00:00
5b479316edAccepting request 1072680 from home:AndreasStieger:branches:server:databaseReinhard Max2023-03-21 15:10:35 +00:00
e42e2b9682- Update to 3.41.0: * https://www.sqlite.org/releaselog/3_41_0.html * Various query planner improvements. * Add the built-in unhex() SQL function. * Add the base64 and base85 application-defined functions as an extension and include that extension in the CLI. * In-memory databases created using sqlite3_deserialize() now report their filename as an empty string, not as 'x'. * The ".scanstats est" command provides query planner estimates in profiles. * Enhance the --safe command-line option to disallow dangerous SQL functions. * The double-quoted string misfeature is now disabled by default for CLI builds. * Various other improvements and performance enhancements.Reinhard Max2023-02-22 10:09:14 +00:00
989c4161c9- bsc#1206337, CVE-2022-46908, sqlite-CVE-2022-46908.patch: relying on --safe for execution of an untrusted CLI scriptReinhard Max2022-12-13 16:12:14 +00:00
8fb7a2b6da* bsc#1189802, CVE-2021-36690: Fix an issue with the SQLite Expert extension when a column has no collating sequence.Reinhard Max2022-09-12 09:20:10 +00:00
40bb6fef9c- update to 3.39.3: * Use a statement journal on DML statement affecting two or more database rows if the statement makes use of a SQL functions that might abort. * Use a mutex to protect the PRAGMA temp_store_directory and PRAGMA data_store_directory statements, even though they are decremented and documented as not being threadsafe.Reinhard Max2022-09-05 15:20:33 +00:00
db850fbdfdAccepting request 991047 from server:databaseRichard Brown2022-07-26 17:42:21 +00:00
30186d2a5aAccepting request 990677 from home:AndreasStieger:branches:server:databaseReinhard Max2022-07-25 13:52:39 +00:00
b10f552687- update to 3.39.2: * Fix a performance regression in the query planner associated with rearranging the order of FROM clause terms in the presences of a LEFT JOIN. * Apply fixes for CVE-2022-35737, Chromium bugs 1343348 and 1345947, forum post 3607259d3c, and other minor problems discovered by internal testing.Reinhard Max2022-07-21 17:13:33 +00:00
c070330dbfAccepting request 989477 from home:AndreasStieger:branches:server:databaseReinhard Max2022-07-18 10:24:56 +00:00
c464d12817- update to 3.38.2: * Fix a problem with the Bloom filter optimization that might cause an incorrect answer when doing a LEFT JOIN with a WHERE clause constraint that says that one of the columns on the right table of the LEFT JOIN is NULL. * Other minor patches.Reinhard Max2022-03-29 11:46:41 +00:00
c9c9f6d2d8- Remove obsolete configure flags - Package the Tcl bindings here again so that we only ship one copy of SQLite (bsc#1195773). - Use dynamic linking for the sqlite3 shell.Reinhard Max2022-03-16 18:44:06 +00:00
Adrian Schröter
Ana Guerrero
Reinhard Max
Dominique Leuenberger
Martin Pluskal
Richard Brown
Lars Vogdt