CVE-2022-39368
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-39368
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-39368.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-39368
- Aliases
- Published
- 2022-11-09T00:00:00Z
- Modified
- 2025-12-06T14:07:45.925301Z
- Severity
-
- 8.2 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H CVSS Calculator
- Summary
- Californium Failing DTLS handshakes causes Data Loss due to throttling blocking processing of records
- Details
-
Eclipse Californium is a Java implementation of RFC7252 - Constrained Application Protocol for IoT Cloud services. In versions prior to 3.7.0, and 2.7.4, Californium is vulnerable to a Denial of Service. Failing handshakes don't cleanup counters for throttling, causing the threshold to be reached without being released again. This results in permanently dropping records. The issue was reported for certificate based handshakes, but may also affect PSK based handshakes. It generally affects client and server as well. This issue is patched in version 3.7.0 and 2.7.4. There are no known workarounds. main: commit 726bac57659410da463dcf404b3e79a7312ac0b9 2.7.x: commit 5648a0c27c2c2667c98419254557a14bac2b1f3f
- Database specific
{ "cna_assigner": "GitHub_M", "cwe_ids": [ "CWE-404", "CWE-459" ], "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/39xxx/CVE-2022-39368.json" }- References
-
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/39xxx/CVE-2022-39368.json
- https://github.com/eclipse-californium/californium/commit/5648a0c27c2c2667c98419254557a14bac2b1f3f
- https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9
- https://github.com/eclipse-californium/californium/security/advisories/GHSA-p72g-cgh9-ghjg
- https://nvd.nist.gov/vuln/detail/CVE-2022-39368
Affected packages
Git / github.com/eclipse-californium/californium
Affected ranges
- Type
- GIT
- Repo
- https://github.com/eclipse-californium/californium
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedFixed
Affected versions
1.*
1.0.0
1.0.0-RC1
1.0.0-RC2
1.0.1
2.*
2.0.0
2.0.0-M1
2.0.0-M10
2.0.0-M11
2.0.0-M12
2.0.0-M13
2.0.0-M14
2.0.0-M15
2.0.0-M16
2.0.0-M17
2.0.0-M18
2.0.0-M2
2.0.0-M3
2.0.0-M4
2.0.0-M5
2.0.0-M6
2.0.0-M7
2.0.0-M8
2.0.0-M9
2.0.0-RC1
2.0.0-RC2
2.1.0
2.1.0-RC1
2.1.0-RC2
2.2.0
2.2.0-RC1
2.3.0
2.3.0-RC1
2.3.0-RC2
2.4.0
2.5.0
2.6.0
2.6.1
2.6.2
2.6.3
2.6.4
2.6.5
2.6.6
2.7.0
2.7.1
2.7.2
2.7.3
3.*
3.0.0
3.0.0-M1
3.0.0-M2
3.0.0-M3
3.0.0-RC1
3.0.0-RC2
3.1.0
3.2.0
3.3.0
3.4.0
3.5.0
3.6.0
Database specific
vanir_signatures
[
{
"digest": {
"function_hash": "294675876100412608205390851491072000781",
"length": 556.0
},
"id": "CVE-2022-39368-0855cd4d",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "run"
},
"source": "https://github.com/eclipse-californium/californium/commit/5648a0c27c2c2667c98419254557a14bac2b1f3f",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "92045266924178410006093459122414058856",
"length": 907.0
},
"id": "CVE-2022-39368-092d20cd",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "run"
},
"source": "https://github.com/eclipse-californium/californium/commit/5648a0c27c2c2667c98419254557a14bac2b1f3f",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "271200220423828565259125193068246361761",
"length": 483.0
},
"id": "CVE-2022-39368-1d51b356",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "run"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "202833223220143884180687661200879921891",
"length": 881.0
},
"id": "CVE-2022-39368-20bd8d0c",
"signature_version": "v1",
"target": {
"file": "element-connector/src/main/java/org/eclipse/californium/elements/util/SerialExecutor.java",
"function": "scheduleNextJob"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "174031691385185337067722562349522318927",
"length": 1909.0
},
"id": "CVE-2022-39368-21a5dd11",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "processRecords"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "5258954426959427562762266949686879031",
"length": 814.0
},
"id": "CVE-2022-39368-322f56eb",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/test/java/org/eclipse/californium/scandium/DTLSConnectorHandshakeTest.java",
"function": "startServer"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "95255692869218916322855464578080247442",
"length": 805.0
},
"id": "CVE-2022-39368-3579a4cf",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/test/java/org/eclipse/californium/scandium/DTLSConnectorHandshakeTest.java",
"function": "cleanUp"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "239600851435935806084744836576105925578",
"length": 4152.0
},
"id": "CVE-2022-39368-3e565274",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "send"
},
"source": "https://github.com/eclipse-californium/californium/commit/5648a0c27c2c2667c98419254557a14bac2b1f3f",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "37799483447366863799058322617649326325",
"length": 621.0
},
"id": "CVE-2022-39368-4055a3b9",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "run"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "298565303431916856637164073677862333185",
"length": 1626.0
},
"id": "CVE-2022-39368-473c5e85",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "stop"
},
"source": "https://github.com/eclipse-californium/californium/commit/5648a0c27c2c2667c98419254557a14bac2b1f3f",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"line_hashes": [
"56116203827553722431489091370685093476",
"272322290872834234826819844202472450568",
"57927623656518322506646773039309555297",
"248229565813657128467914568678566277526",
"317095064165835007851113312194150020664",
"234956973925884615774170882980358092313",
"214986338290438489624309353785552872163",
"150631287992891947549099262262332335902",
"274502033922040075376659164025449600800",
"242127896107477406482343454276498820953",
"187152633429946134475432114362939949725",
"107946799872353892799787803273096206798",
"333945230582761283837182044434873128550",
"195354294080607407821290093685049503143",
"116041790146423756535688093912667591613",
"56413816350247088666635992431868854093"
],
"threshold": 0.9
},
"id": "CVE-2022-39368-4a096546",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/test/java/org/eclipse/californium/scandium/DTLSConnectorTest.java"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Line"
},
{
"digest": {
"function_hash": "238079365762461301469875296748754311551",
"length": 1574.0
},
"id": "CVE-2022-39368-55fd61de",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/dtls/InMemoryReadWriteLockConnectionStore.java",
"function": "remove"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "102906952320304011635926714820079274687",
"length": 106.0
},
"id": "CVE-2022-39368-5a96135b",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "run"
},
"source": "https://github.com/eclipse-californium/californium/commit/5648a0c27c2c2667c98419254557a14bac2b1f3f",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "255653281976927721775369518627556643781",
"length": 605.0
},
"id": "CVE-2022-39368-5c803a73",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "executeOutbound"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"line_hashes": [
"326650669356402421065273177211865144053",
"190012854132791876715562377907186095298",
"186655151987454733266160844339394885146",
"188119825887585207712291276338923235900",
"160912825920143150561634865917477463723",
"180386943705980289401167080157558804145",
"65804981285966080384106744827024908506",
"152283508451309295780002431022989777091",
"300662616192332444738689414021140087906",
"110481381376720224954744005042897822201",
"187748698257980671188658807922984640773",
"52523078544266285687870111902251234742",
"312571566243142259111588143724693015751",
"67871327129309696197877676942689313094",
"207115431677001234819991534505091573876",
"333414085359939227590141258203956804639",
"59144983303333437398707432251573859121",
"264051665202313276986147361648863374892",
"319371150326788919023698620668573878511",
"324969005525754038596748529304140705862",
"188109098475597395807749847258756071169"
],
"threshold": 0.9
},
"id": "CVE-2022-39368-62549d87",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/dtls/InMemoryReadWriteLockConnectionStore.java"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Line"
},
{
"digest": {
"function_hash": "233182670608423684371729005264994471195",
"length": 3830.0
},
"id": "CVE-2022-39368-628890e3",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "send"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "151989146078924186977286988980713151497",
"length": 898.0
},
"id": "CVE-2022-39368-62e7cbe9",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "run"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"line_hashes": [
"313904509431098562580138360168557710268",
"35175454312534593247027080421976623665",
"40283666595764367678168638590790496472",
"271888115060368499948657953988533728988",
"320608157915986769760754178820495821887",
"36481405906006261407741360939088028561",
"234681792574280040721740296301189109556",
"64951264876811739627236588304018103176",
"49162920473333394360552788201621683450",
"19060770416142975645241638814956263965",
"276905285221567026077574363937015083588",
"124180970800504379488697673429674582590"
],
"threshold": 0.9
},
"id": "CVE-2022-39368-6bfd23f7",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/dtls/InMemoryConnectionStore.java"
},
"source": "https://github.com/eclipse-californium/californium/commit/5648a0c27c2c2667c98419254557a14bac2b1f3f",
"deprecated": false,
"signature_type": "Line"
},
{
"digest": {
"function_hash": "318808368204261685363493917972453539975",
"length": 1231.0
},
"id": "CVE-2022-39368-6e80ec12",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/test/java/org/eclipse/californium/scandium/DTLSConnectorTest.java",
"function": "testConnectorTerminatesHandshakeIfConnectionStoreIsExhausted"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "294427715602601880906887546934686460832",
"length": 559.0
},
"id": "CVE-2022-39368-70b5d7e4",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "executeHandshakeResult"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "297253873209036087512177257378325450326",
"length": 2851.0
},
"id": "CVE-2022-39368-727ac04c",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "processNewClientHello"
},
"source": "https://github.com/eclipse-californium/californium/commit/5648a0c27c2c2667c98419254557a14bac2b1f3f",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "12048953375424043735126534098954862079",
"length": 867.0
},
"id": "CVE-2022-39368-7283a24d",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/dtls/InMemoryConnectionStore.java",
"function": "remove"
},
"source": "https://github.com/eclipse-californium/californium/commit/5648a0c27c2c2667c98419254557a14bac2b1f3f",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"line_hashes": [
"93269423503514116965721822896438492914",
"315635262268575119679390772153246847375",
"317687458449038063032385641698220669138",
"182311524221266017712612386657820992461",
"153217635631236347408622833998169340136",
"169312740258604623180778439327478452236",
"314084724630626147818878857001507511308",
"62624293914067622129452415334128350199",
"282024559770283036656871118015988337608",
"41213663844358119597042815533078505525",
"145915905854121456419890001832677663189",
"151441199118650356469945483473386845079",
"114299355885810183821994542309665073949",
"80199123961607680169772851536840228882",
"121681544705449065207576104600031676230",
"144504582016852280287745742541656023277"
],
"threshold": 0.9
},
"id": "CVE-2022-39368-740901eb",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/test/java/org/eclipse/californium/scandium/DTLSConnectorAdvancedTest.java"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Line"
},
{
"digest": {
"line_hashes": [
"49005650332297093775822588163216267390",
"83676248097208688407898377743360378557",
"42232402424114601497409034518450725537",
"85026342583449598336756687852703756076",
"322079961808127928290186830148292151103",
"265680999035252457961809364377822730528",
"212865224953754793292638064998646463821",
"316720247940938509006553874019088725204",
"32525056667134281949122020897445375248",
"11113717622379898461698558523687701576",
"177277674696380424081123645561081296343",
"147555922288507994702931054325480462779",
"84213683889694761316573563322928868572",
"320760769195433444088621180278438592599",
"110327113920822021627314613058513625015"
],
"threshold": 0.9
},
"id": "CVE-2022-39368-7821437d",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/dtls/Connection.java"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Line"
},
{
"digest": {
"function_hash": "43075606079399262513057851696821049689",
"length": 1357.0
},
"id": "CVE-2022-39368-792528e3",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/dtls/InMemoryConnectionStore.java",
"function": "remove"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "89891312083052502034380114025818178683",
"length": 7514.0
},
"id": "CVE-2022-39368-93ab9ae3",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "init"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "182381038782986504233384317138511985845",
"length": 244.0
},
"id": "CVE-2022-39368-957fe911",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "run"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "235341422124427403694441513692014740547",
"length": 156.0
},
"id": "CVE-2022-39368-95aecf14",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "run"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "134044181501431979452756766956221770507",
"length": 91.0
},
"id": "CVE-2022-39368-99893cc5",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "run"
},
"source": "https://github.com/eclipse-californium/californium/commit/5648a0c27c2c2667c98419254557a14bac2b1f3f",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "251405884108370452754598257934751584019",
"length": 766.0
},
"id": "CVE-2022-39368-a506e385",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "executeInbound"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "270556188949390535943109713107263988767",
"length": 364.0
},
"id": "CVE-2022-39368-aa41fbcc",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/test/java/org/eclipse/californium/scandium/DTLSConnectorAdvancedTest.java",
"function": "createConnection"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"line_hashes": [
"87988325519652770241843454527698491625",
"71137150834344424394635573489786473482",
"208301875729249499589828196988440794193",
"61801032533382815150201109727209841787",
"309970229901079376683726646924255758226",
"292530427155590106459787725548723444639",
"139857015815008220760168662406361686812",
"241611376446649025436646119736948695944",
"265566145327795026061601573753977546146",
"191059712276138412459699443109156287703",
"329764536265902041489508271100944578471",
"17755736506595202629319170372607342905",
"284008914838489213079974692069636532344",
"270301763517917601781910005043689410110",
"261897149227634445005134019594904165538",
"290162863761548623034004563194594021467",
"153077041098614527531446858024844939572",
"179810517898099918395909244025502771567",
"310798051974739261888853062478538738734",
"308562279806408937695569838348407830728",
"238004724458145262161814187421445946688",
"200098829438456103592839290187699126635",
"92354931669683637072899730645881689223",
"197006142232052549521685351292405971336",
"146213462699560121146514618646686601890",
"52229527940379618139766858620559790528",
"41228779248638967859433153554959541178",
"202391069465521965254927934544419763351",
"531479212370776269907389318030048609",
"236707153716303802714268954249198674647",
"171853738054005939487967252811099366803",
"274984927417934125901926320935627552971",
"211498166130694529552784422591289101242",
"19645338110157571362679424192837902103",
"261208850086170421565026966847359202631",
"67081307557904877156802339770726228101",
"80167912300203433637237192992217448545",
"40034550996216746094798023992733918467",
"309118809508663039461409812620827552223",
"8703561196300410461161004523010284882",
"85408704702223108484220014308790785651",
"20411519420645062944956204670445367740",
"277619716131207353805272868155691262486",
"141677833413819542605636054392190497221",
"243665374764413442826091530549208263620",
"59352300325490698842684123593710470150",
"109313515254500833449115866028005966813",
"64157908043136425704691129581621090058",
"253191424192797537807405559129195688366",
"144574556307615446359529481589851287723",
"192369687155377228402179212926597436080",
"179069005858625660595016621874223381670",
"56591493985348229856266477265502690326",
"263040679202604936872188909413746108406",
"66950358112899682796386834036091360339",
"99865503928682791290922828844053550980",
"140428537560943344711521087729587797136",
"31298919324234697484032665784312519266",
"327189875726765250621134983962814543750",
"12910280016722416746587002817152094917",
"101406841216491122719371354652415351679",
"149345614991886519323089481205123493795",
"300182077078329737016151537929836918614",
"296177877085581300781496994433143959591",
"65520388739724745745384319950176192927",
"271444517468031078875488683439127043330",
"234986257851131539183861509391152522730",
"156682603362760860815052610704026802976",
"280210265540539941630033095123142594826",
"319770971152825910198381703098098042015",
"207283018861800846980590947892844430639",
"326815658436713851130853958631257530295",
"222203340749492854756916353933559810622",
"156205544389878170652949166815919541437",
"53268886304432113461632691296584765216",
"306944256825234376383878834624928025694",
"97850882506503632160169494709021130313",
"86736595161299419470714776521978047902",
"55379385188671437525121512633751312130",
"284345865454775936073194373989175364545",
"208685302637816845913695886662537653098",
"17843664784215067280077611257322637874",
"204104480664828016487522017039742871363",
"46929097110208345615185371708647804714",
"105854010388661492489953975085653884743",
"283163156342992960496173051898922896928",
"310317856752474386928743422087657288006",
"51681409924014835749321344958083747441",
"59352300325490698842684123593710470150",
"40106122506744392407913102825682096744",
"82497182791075981830104248392095857356",
"303765210453608937929274200949246745256",
"294586484901992679607987344440640877571",
"190499079832658231605991529900775636256",
"108684316868963106148009524335584283417",
"324905769143925014900747073156779158630",
"73518747507063102646546138905982724186",
"292169192657750475145085344544808013815",
"108474426287937049167317970079370818912",
"161325387988171615763901667146821428994",
"98310773485692232076178691230792695514",
"94300128382149253262874573366639358023",
"86628502705371676168089505838596414266",
"113010948120202263028192298812308344523",
"33103745288607761493198149381377636868",
"128409014908597044879806982083543333578",
"218811180836780178041718219758079287930",
"173196811862653376443194583385876468937",
"311257007981516627235636762179064222071",
"213690602124872634682212021044501818289",
"132362878044437654207033755599915243144",
"190939942153221350970721706089729814759",
"195821151633075720128674171761821675085",
"165507171246649631680942779140581157214",
"94408221024534252625902700537685899696",
"227001339884319836941766506885953518048",
"18263504156072872179278215515987372794",
"126685370537886056912380291686256924379",
"280355960983525426449717448756263821338",
"40905682658373091061717185896362175125",
"205177721879532744334614559364415148492",
"129893937154270206949518492309466568855",
"161599438904365647768606560766599172498",
"67144621738035580185023176303076510347",
"308975330328661185124086705820499530431",
"19551159085473401041958329912058703573",
"50863270265905985590371911273584058952",
"203226803699217300067446055057930971405",
"181987858580373560881166983103334309546",
"203828309765737038933512664838569320179",
"107864715414279040678550148234732946109",
"101406841216491122719371354652415351679",
"36136113575085635883629217277217172067",
"158380392899202983188804366406543104713",
"36437323028352428232390267923850185410",
"99783806717810937277795598301852559731",
"150323123247671497795366166461328985120",
"69170712882143301930688064059550882371",
"324428999593537573098360040211681125337",
"41022457275071573854039591540524823370",
"286050157795901985280841448087603547886",
"64585829726592610904004160400356447356",
"256889797010526074697629140287484874862",
"76641451519985178348335439655739530544",
"9808855187280722764145323982495228866",
"226668196304193307103894017752740670569",
"336536853230313094387754468265134542843",
"284345865454775936073194373989175364545",
"134464119518894290624554871196457250339",
"107939908919779800037045104617293629137",
"278917338415802970911952758456039868074",
"47518063336875352621665865782858097860",
"116009480289253790053980292971649850661",
"81641105602634949640415456398062462084",
"59352300325490698842684123593710470150",
"154021714056477691694809857551359539550",
"193672821756705740317664822193673691644",
"115151629249735075390108716904477823925",
"189701246100625266981842559535336739549",
"74105328525893482958837781913694084226",
"105712688700606007518535159444569803245",
"229359575197572507416180668393918403934",
"240486277560685951337127840990378755753",
"275535298877142511783994839174057216180",
"308811382470994391062003168827105959423",
"258514732039371352386375759285538179259",
"88050000148981370105890914062494219816",
"42594037659049881389206343828876085751",
"307328604414560408177497391818357392583",
"291899344990243800533242935112483477850",
"208355800890255200998940657980996072820",
"165876961183738111567076986704043407975",
"248023705015990193940097829299732237431",
"30784551603292338854186308345810891422",
"101406841216491122719371354652415351679",
"219135168508926009269077250209669543047",
"322299069405582705424954265887600204301",
"157504504376810208923690489824341399541",
"266638739935316156505993723765207589381",
"33333950063831757196858529185161325545",
"327809155986565370996116568006504952448",
"121897874560540844514028682383774641795",
"304958144588206586958974022554178735219",
"102705972762457131890469490356491996502",
"337929945969886468087906422852545345967",
"76583116027768507103844202152371153499",
"24756893011877551812584052004338359547",
"284345865454775936073194373989175364545",
"262840190407019205933309845188029936641",
"197942165751591337817455299603974531821"
],
"threshold": 0.9
},
"id": "CVE-2022-39368-abfe8469",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Line"
},
{
"digest": {
"function_hash": "28960576113197911241461123295678405035",
"length": 1367.0
},
"id": "CVE-2022-39368-b2cc7d8a",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "processAsynchronousHandshakeResult"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "271541544413936698287888823821999954277",
"length": 100.0
},
"id": "CVE-2022-39368-b648a291",
"signature_version": "v1",
"target": {
"file": "element-connector/src/main/java/org/eclipse/californium/elements/util/SerialExecutor.java",
"function": "SerialExecutor"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"line_hashes": [
"101076358585520172665483868168696390389",
"190012854132791876715562377907186095298",
"186655151987454733266160844339394885146",
"188119825887585207712291276338923235900",
"160912825920143150561634865917477463723",
"180386943705980289401167080157558804145",
"65804981285966080384106744827024908506",
"152283508451309295780002431022989777091",
"300662616192332444738689414021140087906",
"110481381376720224954744005042897822201",
"187748698257980671188658807922984640773",
"52523078544266285687870111902251234742",
"312571566243142259111588143724693015751",
"67871327129309696197877676942689313094",
"207115431677001234819991534505091573876",
"333414085359939227590141258203956804639",
"59144983303333437398707432251573859121",
"264051665202313276986147361648863374892",
"319371150326788919023698620668573878511",
"324969005525754038596748529304140705862",
"188109098475597395807749847258756071169"
],
"threshold": 0.9
},
"id": "CVE-2022-39368-be5905cc",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/dtls/InMemoryConnectionStore.java"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Line"
},
{
"digest": {
"function_hash": "287043714995192442533905335986428794950",
"length": 525.0
},
"id": "CVE-2022-39368-c6bf3269",
"signature_version": "v1",
"target": {
"file": "element-connector/src/main/java/org/eclipse/californium/elements/util/SerialExecutor.java",
"function": "run"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"line_hashes": [
"144623545576614084042988623451102474503",
"138194651822056035856800213756660214728",
"61707587887403547304654698955437925947",
"233042488585344972708021410705299485124",
"118694200672335670019329067488107161666",
"158788778655153807837581853902119904028",
"24389821379455188416379966867969616049",
"314136607746356804027430961421503382140",
"94343181313132171409379009946894865438",
"18486433901050798867544070970937767021",
"291803538048919762550072134569832456546",
"10433069421020690524963565915620449786",
"68564932996074673052750430707457531792",
"92593276974590700209126113619792148996",
"195099461307798593106432598746534557386",
"64225293375883421830407976416870669651",
"267345258800240609443379831599420093788",
"247976874121946402760973127478245070449",
"207930086905240829514559710028758008940",
"74675674250241484150485952203117634117",
"302082933428285931386602492548293113675",
"30841785294496431368947664872653809439",
"253748620113292987604082957309545047636",
"117141311427771044833504324198468074890",
"153540558653002919767140639641907530244",
"58202979793702658520978555451383504528",
"25598780939469138641088132874832844247",
"155612719714599484380954454864957035830",
"219385173291413173796409962474482152787",
"203937296383708507642460689435472992617",
"221488716272640446493203598417432533988",
"285146225095501681563179797672509632834",
"49249166474486549080145087468431469781",
"307858017845954720764949732118031382617",
"75960542029732124603994315828170552551",
"3721997250869314187680801364922364415",
"282930538456520830125077778557270744247",
"228327432653122419795904289969802415429",
"239006059532593134444076575992083803591",
"279553603223191242890558062602130214572",
"233217585267118963494273687057631529641"
],
"threshold": 0.9
},
"id": "CVE-2022-39368-c9b313c4",
"signature_version": "v1",
"target": {
"file": "element-connector/src/main/java/org/eclipse/californium/elements/util/SerialExecutor.java"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Line"
},
{
"digest": {
"line_hashes": [
"238004724458145262161814187421445946688",
"200098829438456103592839290187699126635",
"92354931669683637072899730645881689223",
"197006142232052549521685351292405971336",
"252221209721598751433552778453425701463",
"193169681158317815652010698665931113627",
"20028905828913204695635839481362221117",
"100833925693111152234404672269521292275",
"123997703650648198381492631743728972377",
"148418566975556233497589559312324097465",
"155029602618254603586424965981728977651",
"44289508201674420184800741550738711621",
"59352300325490698842684123593710470150",
"40106122506744392407913102825682096744",
"82497182791075981830104248392095857356",
"298239542389483182188819220242768390691",
"252221209721598751433552778453425701463",
"306018339519633325578335285244128541932",
"307581352652175880200744032128330619058",
"324443296590664520614268519549617215434"
],
"threshold": 0.9
},
"id": "CVE-2022-39368-d26eee58",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java"
},
"source": "https://github.com/eclipse-californium/californium/commit/5648a0c27c2c2667c98419254557a14bac2b1f3f",
"deprecated": false,
"signature_type": "Line"
},
{
"digest": {
"line_hashes": [
"247152713937634081289650075133841551409",
"129347361204264546074574357468540940514",
"270213195747743182361574363491405627525",
"273700247696201604213274705484645993309",
"33299673418194153658033974061036841949",
"184927505833958426492059510813882629963",
"115694171676462804587622243341201634832",
"226825822322178517404678924755190468413",
"288686032098518858925158505094836479127",
"124626518785941973478207077216249470857",
"7053639750566979137293304055832624783",
"230009550327927027719114123169678630378",
"268985337131064563114755242465186866470",
"148387452543868430380531596915517388273"
],
"threshold": 0.9
},
"id": "CVE-2022-39368-d40d4bf0",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/test/java/org/eclipse/californium/scandium/DTLSConnectorHandshakeTest.java"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Line"
},
{
"digest": {
"function_hash": "158828430392308118077524607600163598921",
"length": 1996.0
},
"id": "CVE-2022-39368-db53ca21",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "stop"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "82873037821070509340846362053411920930",
"length": 1216.0
},
"id": "CVE-2022-39368-dc7a3054",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "processAsynchronousHandshakeResult"
},
"source": "https://github.com/eclipse-californium/californium/commit/5648a0c27c2c2667c98419254557a14bac2b1f3f",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "284715114172830543650418138713553805399",
"length": 2876.0
},
"id": "CVE-2022-39368-e6261ba1",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/main/java/org/eclipse/californium/scandium/DTLSConnector.java",
"function": "processDatagram"
},
"source": "https://github.com/eclipse-californium/californium/commit/5648a0c27c2c2667c98419254557a14bac2b1f3f",
"deprecated": false,
"signature_type": "Function"
},
{
"digest": {
"function_hash": "215822796367529727565633331367281451711",
"length": 1169.0
},
"id": "CVE-2022-39368-f3510f58",
"signature_version": "v1",
"target": {
"file": "scandium-core/src/test/java/org/eclipse/californium/scandium/DTLSConnectorTest.java",
"function": "testStartStopWithSameAddressPersistent"
},
"source": "https://github.com/eclipse-californium/californium/commit/726bac57659410da463dcf404b3e79a7312ac0b9",
"deprecated": false,
"signature_type": "Function"
}
]
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-39368.json"
Git / github.com/eclipse/californium
Affected ranges
- Type
- GIT
- Repo
- https://github.com/eclipse/californium
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
1.*
1.0.0
1.0.0-RC1
1.0.0-RC2
1.0.1
2.*
2.0.0
2.0.0-M1
2.0.0-M10
2.0.0-M11
2.0.0-M12
2.0.0-M13
2.0.0-M14
2.0.0-M15
2.0.0-M16
2.0.0-M17
2.0.0-M18
2.0.0-M2
2.0.0-M3
2.0.0-M4
2.0.0-M5
2.0.0-M6
2.0.0-M7
2.0.0-M8
2.0.0-M9
2.0.0-RC1
2.0.0-RC2
2.1.0
2.1.0-RC1
2.1.0-RC2
2.2.0
2.2.0-RC1
2.3.0
2.3.0-RC1
2.3.0-RC2
2.4.0
2.5.0
2.6.0
2.6.1
2.6.2
2.6.3
2.6.4
2.6.5
2.6.6
2.7.0
2.7.1
2.7.2
2.7.3