Is the SQLCipher library affected by CVE-2025-15467 which applies to OpenSSL 3.5.4?
If so, any updates planned soon to address it?
Hello @akariuki - SQLCipher is not affected by CVE-2025-15467 because SQLCipher doesn’t use OpenSSL CMS or any parts of the vulnerable code paths. That said, SQLCipher packages will be updated to the latest OpenSSL that resolves this issue in the next release.
1 Like