SQLite and Zlib dll?

JordyMeng2 · Fri Aug 02, 2024 9:53 am

Hi,

We are currently using Advanced Installer version 20.2 and are running into a problem where we are running a vulnerability scan to see which components have vulnerabilities. Several of the CVE vulnerabilities are coming from the SQLite dll and Zlib dll files. We are currently not using any of the database/database server features within our installer script but it still detects a SQLite dll. Could it be that somehow Advanced Installer still installs a version of the SQLite dll and places it in some kind of TEMP file? Perhaps the same happens with the Zlib dll? Or do we need to look at other tools which may have installed the SQLite dll or Zlib dll if we didn't use any of the database features within our installer script?

It would be great if you could let me know if Advanced Installer installs the SQLite DLL or Zlib DLL as part of the "main" or "overhead" files of Advanced Installer. Thank you!

Greetings,
Jordy

YouTube · Tue Aug 06, 2024 11:07 am

Hey Jordy,

Please note I have replied to your colleague Mark over the email. ${L_SMILIES_SMILE}$

I will paste my answer here as well, in case other users will stumble upon this:

I can confirm the existence of those in Advanced Installer, although you might not be using them specifically for your project.

Both are third parties that we are using in specific scenarios.

For example, the SqlLite is used when you add an SqlLite connection in the "SQL Databases" page:

Regarding the versions, I am not quite sure whether we are using the latest or not. In any case, I will create a ticket so our dev team can further investigate and update these, if required.

Thank you very much for bringing this to our attention!

Best regards,
Catalin

JordyMeng2 · Tue Aug 06, 2024 12:03 pm

Catalin wrote: ↑Tue Aug 06, 2024 11:07 am Hey Jordy,

Please note I have replied to your colleague Mark over the email. ${L_SMILIES_SMILE}$

I will paste my answer here as well, in case other users will stumble upon this:

I can confirm the existence of those in Advanced Installer, although you might not be using them specifically for your project.

Both are third parties that we are using in specific scenarios.

For example, the SqlLite is used when you add an SqlLite connection in the "SQL Databases" page:

Regarding the versions, I am not quite sure whether we are using the latest or not. In any case, I will create a ticket so our dev team can further investigate and update these, if required.

Thank you very much for bringing this to our attention!
Best regards,
Catalin

Hi Catalin,

Thank you very much for your reply. At least we are able to rule out some of our theories about which tool is causing the installation of SQLite and the zlib dll. Appreciate the help and have a great day!

Greetings,
Jordy

YouTube · Tue Aug 06, 2024 1:28 pm

You are always welcome, Jordy! ${L_SMILIES_SMILE}$

Best regards,
Catalin

YouTube · Mon Oct 14, 2024 4:11 pm

Hello,

The DLLs have been updated to the latest versions starting with v22.1 of Advanced Installer.

Best regards,
Catalin

Suggested Articles

User Guide

Videos

Refer & Save Up to 30% On Your Renewal

SQLite and Zlib dll?

SQLite and Zlib dll?

Re: SQLite and Zlib dll?

Re: SQLite and Zlib dll?

Re: SQLite and Zlib dll?

Re: SQLite and Zlib dll?