RubySec

Providing security resources for the Ruby community

CVE-2026-54619 (sqlite3): Use-After-Free When Redefining SQLite Functions with Different Arity

Use-After-Free When Redefining SQLite Functions with Different Arity

Published: June 07, 2026

SECURITY IDENTIFIERS

GEM

sqlite3

UNAFFECTED VERSIONS

< 2.1.0

PATCHED VERSIONS

>= 2.9.5

DESCRIPTION

Summary

Using Database#create_function or Database#define_function to define the same function name more than once with different numbers of arguments ("arity") or text encodings will result in a invalid memory read and a segmentation fault.

Severity

The sqlite3-ruby repo maintainers assess this as Low severity. It is reliably triggered after GC when code is structured in a particular way. There is no known general exploit that could be used as a denial of service attack.

RELATED