Lucene search
Gentoo FoundationMGASA-2023-0179HistoryMay 21, 2023 - 11:42 a.m.
Updated patchelf packages fix security vulnerability
2023-05-2111:42:44
Gentoo Foundation
advisories.mageia.org
7
patchelf
security vulnerability
cve-2022-44940
unix
CVSS3
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
EPSS
0.002
Percentile
61.2%
Patchelf v0.9 was discovered to contain an out-of-bounds read via the function modifyRPath at src/patchelf.cc. (CVE-2022-44940)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 8 | noarch | patchelf | < 0.16.1-1 | patchelf-0.16.1-1.mga8 |
Related
openvas
openvas
Ubuntu: Security Advisory (USN-6036-1)
2023-04-21 00:00:00
Mageia: Security Advisory (MGASA-2023-0179)
2023-05-22 00:00:00
nessus
nessus
Ubuntu 22.04 ESM : PatchELF vulnerability (USN-6036-1)
2023-04-21 00:00:00
nvd
nvd
CVE-2022-44940
2022-12-19 22:15:11
ubuntucve
ubuntucve
CVE-2022-44940
2022-12-19 00:00:00
cve
cve
CVE-2022-44940
2022-12-19 22:15:11
debiancve
debiancve
CVE-2022-44940
2022-12-19 22:15:11
prion
prion
Out-of-bounds
2022-12-19 22:15:00
osv
osv
CVE-2022-44940
2022-12-19 22:15:11
patchelf vulnerability
2023-04-20 21:15:36
ubuntu
ubuntu
PatchELF vulnerability
2023-04-20 00:00:00
cvelist
cvelist
CVE-2022-44940
2022-12-19 00:00:00
CVSS3
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
EPSS
0.002
Percentile
61.2%
Related for MGASA-2023-0179