An Use-After-Free vulnerability in recmsetelem_destroy() at rec-mset.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash.
{
"unresolved_ranges": [
{
"source": "CPE_STRING",
"vendor_product": "fedoraproject:fedora",
"cpes": [
"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "35"
},
{
"last_affected": "35"
},
{
"introduced": "36"
},
{
"last_affected": "36"
}
]
},
{
"source": "CPE_STRING",
"vendor_product": "gnu:recutils",
"cpes": [
"cpe:2.3:a:gnu:recutils:1.8.90:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "1.8.90"
},
{
"last_affected": "1.8.90"
}
]
}
]
}[
{
"id": "CVE-2021-46022-ac781a3e",
"digest": {
"line_hashes": [
"29644893424882325700865118353132252811",
"329416259491914602351227822581003845240",
"338385620638968373949041340582211446384",
"137663640175312692916361425814139319546"
],
"threshold": 0.9
},
"target": {
"file": "src/rec-parser.c"
},
"signature_version": "v1",
"source": "https://github.com/gnu-mirror-unofficial/recutils/commit/34b75ed7ad492c8e38b669ebafe0176f1f9992d2",
"deprecated": false,
"signature_type": "Line"
}
]
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-46022.json"
"2026-07-09T08:10:45Z"