10 matches found
MGASA-2023-0179 Updated patchelf packages fix security vulnerability
Patchelf v0.9 was discovered to contain an out-of-bounds read via the function modifyRPath at src/patchelf.cc. CVE-2022-44940...
Updated patchelf packages fix security vulnerability
Patchelf v0.9 was discovered to contain an out-of-bounds read via the function modifyRPath at src/patchelf.cc. CVE-2022-44940...
Ubuntu: Security Advisory (USN-6036-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 22.04 ESM : PatchELF vulnerability (USN-6036-1)
The remote Ubuntu 22.04 ESM host has a package installed that is affected by a vulnerability as referenced in the USN-6036-1 advisory. It was discovered that PatchELF was not properly performing bounds checks, which could lead to an out-of- bounds read via a specially crafted file. An attacker...
USN-6036-1 patchelf vulnerability
It was discovered that PatchELF was not properly performing bounds checks, which could lead to an out-of-bounds read via a specially crafted file. An attacker could possibly use this issue to cause a denial of service or to expose sensitive information. CVE-2022-44940...
OESA-2023-1001 patchelf security update
PatchELF is a simple utility for modifying an existing ELF executable or library. It can change the dynamic loader "ELF interpreter" of an executable and change the RPATH of an executable or library. Security Fixes: Patchelf v0.9 was discovered to contain an out-of-bounds read via the function...
nomadenv (=0.1.5) potentially affected by CVE-2022-44940 via patchelf (=0.14.5.0)
patchelf PYPI version =0.14.5.0 is affected by a known vulnerability. The following packages have a transitive dependency on patchelf and may be impacted: - nomadenv =0.1.5 Source cves: CVE-2022-44940 Source advisory: OSV:GHSA-5PCJ-3M26-W633...
nomadenv (=0.1.5) potentially affected by CVE-2022-44940 via patchelf (=0.14.5.0)
patchelf PYPI version =0.14.5.0 is affected by a known vulnerability. The following packages have a transitive dependency on patchelf and may be impacted: - nomadenv =0.1.5 Source cves: CVE-2022-44940 Source advisory: OSV:PYSEC-2022-43144...
CVE-2022-44940
Patchelf v0.9 contains an out-of-bounds read via modifyRPath in patchelf.cc (CVE-2022-44940). Several advisories (Ubuntu USN-6036-1, Mageia MGASA-2023-0179, OSV entries) confirm the issue and note a fix has been released in updated Patchelf packages; affected users should apply the vendor-provide...
CVE-2022-44940
Patchelf v0.9 was discovered to contain an out-of-bounds read via the function modifyRPath at src/patchelf.cc...