Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-1664HistoryMay 26, 2022 - 2:15 p.m.
CVE-2022-1664
2022-05-2614:15:00
Debian Security Bug Tracker
security-tracker.debian.org
21
0.009 Low
EPSS
Percentile
82.3%
Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a directory traversal vulnerability. When extracting untrusted source packages in v2 and v3 source package formats that include a debian.tar, the in-place extraction can lead to directory traversal situations on specially crafted orig.tar and debian.tar tarballs.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | dpkg | < 1.21.8 | dpkg_1.21.8_all.deb |
| Debian | 11 | all | dpkg | < 1.20.10 | dpkg_1.20.10_all.deb |
| Debian | 10 | all | dpkg | < 1.19.8 | dpkg_1.19.8_all.deb |
| Debian | 999 | all | dpkg | < 1.21.8 | dpkg_1.21.8_all.deb |
| Debian | 13 | all | dpkg | < 1.21.8 | dpkg_1.21.8_all.deb |
Related
f5
f5
K23439402 : Debian package management system vulnerability CVE-2022-1664
2022-07-08 00:00:00
osv
osv
dpkg vulnerability
2022-05-30 15:29:17
CVE-2022-1664
2022-05-26 14:15:08
cvelist
cvelist
cve
cve
CVE-2022-1664
2022-05-26 14:15:00
alpinelinux
alpinelinux
CVE-2022-1664
2022-05-26 14:15:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:4081-1)
2022-11-21 00:00:00
Huawei EulerOS: Security Advisory for dpkg (EulerOS-SA-2022-2219)
2022-08-18 00:00:00
Ubuntu: Security Advisory (USN-5446-2)
2022-08-26 00:00:00
nessus
nessus
Debian DSA-5147-1 : dpkg - security update
2022-05-26 00:00:00
EulerOS 2.0 SP8 : dpkg (EulerOS-SA-2022-2219)
2022-08-17 00:00:00
EulerOS Virtualization 3.0.2.0 : dpkg (EulerOS-SA-2023-1744)
2023-05-07 00:00:00
debian
debian
[SECURITY] [DSA 5147-1] dpkg security update
2022-05-25 15:31:54
mageia
mageia
Updated dpkg packages fix security vulnerability
2022-09-16 22:39:55
cbl_mariner
cbl_mariner
CVE-2022-1664 affecting package dpkg for versions less than 1.20.10-1
2022-07-01 20:55:27
cloudfoundry
cloudfoundry
USN-5446-1: dpkg vulnerability | Cloud Foundry
2022-07-28 00:00:00
ubuntu
ubuntu
dpkg vulnerability
2022-05-30 00:00:00
veracode
veracode
Directory Traversal
2022-05-29 20:50:36
prion
prion
Directory traversal
2022-05-26 14:15:00
ubuntucve
ubuntucve
CVE-2022-1664
2022-05-25 00:00:00
ibm
ibm
avleonov
avleonov