CVE-2022-29799

2022-09-2119:15:00

Debian Security Bug Tracker

security-tracker.debian.org

0.001 Low

EPSS

Percentile

25.6%

JSON

A vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of networkd-dispatcher. This attack leads to a directory traversal to escape from the “/etc/networkd-dispatcher” base directory.

OSVersionArchitecturePackageVersionFilename
Debian12allnetworkd-dispatcher< 2.2.3-1networkd-dispatcher_2.2.3-1_all.deb
Debian11allnetworkd-dispatcher<= 2.1-2networkd-dispatcher_2.1-2_all.deb
Debian10allnetworkd-dispatcher<= 2.0-2networkd-dispatcher_2.0-2_all.deb
Debian999allnetworkd-dispatcher< 2.2.3-1networkd-dispatcher_2.2.3-1_all.deb
Debian13allnetworkd-dispatcher< 2.2.3-1networkd-dispatcher_2.2.3-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	networkd-dispatcher	< 2.2.3-1	networkd-dispatcher_2.2.3-1_all.deb
Debian	11	all	networkd-dispatcher	<= 2.1-2	networkd-dispatcher_2.1-2_all.deb
Debian	10	all	networkd-dispatcher	<= 2.0-2	networkd-dispatcher_2.0-2_all.deb
Debian	999	all	networkd-dispatcher	< 2.2.3-1	networkd-dispatcher_2.2.3-1_all.deb
Debian	13	all	networkd-dispatcher	< 2.2.3-1	networkd-dispatcher_2.2.3-1_all.deb

0.001 Low

EPSS

Percentile

25.6%

JSON

Related for DEBIANCVE:CVE-2022-29799