Jump to content
Login new information ×
Login new information
  • Software News

    Microsoft updates Windows DLL that triggered security alerts

    Karlston

    By Karlston,
    Published Date:

    • 240 views
    • 2 minutes
     Share
    • 240 views
    • 2 minutes

    Microsoft has resolved a known issue that was causing security applications to incorrectly flag a core Windows component, the company said in a service alert posted this week.

     

    The list of affected systems is quite extensive and includes both client (Windows 10 and Windows 11) and server (Windows Server 2012 through Windows Server 2025) platforms.

     

    According to widespread user reports over the past several months, third-party security software flagged Windows assets, including WinSqlite3.dll, a dynamic link library (DLL) included with the Windows system libraries that implements the SQLite database engine, as vulnerable to attacks exploiting a memory corruption vulnerability (CVE-2025-6965).

     

    Microsoft confirmed the issue on Tuesday in a service alert seen by BleepingComputer and updated the WinSqlite3.dll Windows core component to address the false positive detections.

     

    "Security scanning applications may report the Windows components WinSqlite3.dll as vulnerable. WinSqllite3.dll is included in Windows as part of core installation components and can be found in system folders. The latest version was included in Windows updates released June 2025 and later," it said.

     

    "This issue was resolved in updates released January 13, 2026 and later. We recommend you install the latest update for your device as it contains important improvements and issue resolution."

     

    Microsoft also noted that WinSqlite3.dll is distinct from sqlite3.dll, which is not a Windows component, and that it can be updated for Microsoft apps by installing their latest version from the Microsoft Store.

     

    In October, Microsoft resolved a false positive issue that caused its Defender for Endpoint enterprise security platform to incorrectly mark SQL Server as end-of-life.

     

    The bug affected Microsoft Defender XDR customers running SQL Server 2017 and 2019, even though SQL Server 2017 will reach the end of extended support in October 2027 and SQL Server 2019 is supported until January 2030.

     

    One week earlier, it fixed another new false positive that caused Defender for Endpoint to flag BIOS firmware on some Dell devices as outdated, prompting users to update it.

     

    Source

    Hope you enjoyed this news post. Feedback welcome.

    Posted Thursday 15 January 2026 at 5:15 am AEST (my time).

    News posts... 2023: 5,800+ | 2024: 5,700+ | 2025: 5,700+

    RIP Matrix

     Share
    Go to news

    User Feedback

    Recommended Comments

    There are no comments to display.



    Join the conversation

    You can post now and register later. If you have an account, sign in now to post with your account.
    Note: Your post will require moderator approval before it will be visible.

    Guest
    Add a comment...

    ×   Pasted as rich text.   Paste as plain text instead

      Only 75 emoji are allowed.

    ×   Your link has been automatically embedded.   Display as a link instead

    ×   Your previous content has been restored.   Clear editor

    ×   You cannot paste images directly. Upload or insert images from URL.

    ×

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...