Linux Distros Unpatched Vulnerability : CVE-2022-40320

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. CVE-2022-40320 Note that Nessus relies on the presence of the package as report...

CBL Mariner 2.0 Security Update: libconfuse (CVE-2022-40320)

The version of libconfuse installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-40320 advisory. - cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. CVE-2022-40320 Note tha...

CVE-2022-40320 affecting package libconfuse 3.3-1

CVE-2022-40320 affecting package libconfuse 3.3-1. A patched version of the package is available...

Amazon Linux AMI : libconfuse (ALAS-2023-1692)

The version of libconfuse installed on the remote host is prior to 2.7-4.4. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1692 advisory. cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. CVE-2022-40320 Tenable has extracted the precedi...

Important: libconfuse

Issue Overview: cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. CVE-2022-40320 Affected Packages: libconfuse Issue Correction: Run yum update libconfuse or yum update --advisory ALAS-2023-1692 to update your system. New Packages: i686: ...

CVE-2022-40320 affecting package libconfuse for versions less than 3.3-2

CVE-2022-40320 affecting package libconfuse for versions less than 3.3-2. A patched version of the package is available...

SUSE-SU-2022:3807-1 Security update for libconfuse0

This update for libconfuse0 fixes the following issues: - CVE-2022-40320: Fixed a heap-based buffer over-read in cfgtildeexpand in confuse.c bsc1203326...

SUSE: Security Advisory (SUSE-SU-2022:3807-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2022-0387)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OESA-2022-1928 libconfuse security update

libConfuse is a configuration file parser library, licensed under the terms of the ISC license, and written in C. It supports sections and lists of values strings, integers, floats, booleans or other sections, as well as some other features such as single/double-quoted strings, environment variab...

SUSE SLES12 Security Update : libconfuse0 (SUSE-SU-2022:3331-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3331-1 advisory. - cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. CVE-2022-40320 Note that Nessus has not tested for this...

SUSE-SU-2022:3331-1 Security update for libconfuse0

This update for libconfuse0 fixes the following issues: - CVE-2022-40320: Fixed a heap-based buffer over-read in cfgtildeexpand in confuse.c bsc1203326...

CVE-2022-40320

creationtimestamp| type| source ---|---|--- 2022-09-10 05:43:52+00:00| seen| https://t.me/cibsecurity/49565...

CVE-2022-40320

cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...

AZL-10925 CVE-2022-40320 affecting package libconfuse for versions less than 3.3-2

cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...

UBUNTU-CVE-2022-40320

cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...

CVE-2022-40320

cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...

CVE-2022-40320

CVE-2022-40320 affects libconfuse: cfg_tilde_expand in confuse.c of libConfuse 3.3 has a heap-based buffer over-read. Multiple advisories indicate affected packages and available patches (e.g., Mariner/SUSE/Amazon Linux advisories reference a patched version; Nessus entries note unpatched status ...