Vulnerability Database
Blog
FAQ
Docs
CVE-2023-29479
See a problem?
Please try reporting it
to the source
first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-29479
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-29479.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-29479
Related
ALSA-2023:1802
ALSA-2023:1809
DLA-3400-1
DSA-5392-1
RHSA-2023:1802
RHSA-2023:1803
RHSA-2023:1804
RHSA-2023:1805
RHSA-2023:1806
RHSA-2023:1809
RHSA-2023:1810
RHSA-2023:1811
RLSA-2023:1802
RLSA-2023:1809
SUSE-SU-2023:2064-1
UBUNTU-CVE-2023-29479
USN-6015-1
openSUSE-SU-2024:12852-1
openSUSE-SU-2024:12995-1
Published
2023-04-24T15:15:08Z
Modified
2024-09-11T04:58:00.330010Z
Severity
5.3 (Medium)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
CVSS Calculator
Summary
[none]
Details
Ribose RNP before 0.16.3 may hang when the input is malformed.
References
https://cve.ribose.com/advisories/ra-2023-04-11/
https://www.rnpgp.org/blog/2023-04-13-rnp-release-0-16-3/
https://security-tracker.debian.org/tracker/CVE-2023-29479
Affected packages
Debian:12
/
rnp
Package
Name
rnp
Purl
pkg:deb/debian/rnp?arch=source
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0.16.3-1
Ecosystem specific
{ "urgency": "not yet assigned" }
Debian:13
/
rnp
Package
Name
rnp
Purl
pkg:deb/debian/rnp?arch=source
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0.16.3-1
Ecosystem specific
{ "urgency": "not yet assigned" }
Debian:11
/
thunderbird
Package
Name
thunderbird
Purl
pkg:deb/debian/thunderbird?arch=source
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:102.10.0-1~deb11u1
Affected versions
1:78.*
1:78.12.0-1
1:78.13.0-1~deb9u1
1:78.13.0-1~deb10u1
1:78.13.0-1~deb11u1
1:78.13.0-1
1:78.14.0-1~deb9u1
1:78.14.0-1~deb10u1
1:78.14.0-1~deb11u1
1:78.14.0-1
1:84.*
1:84.0~b3-1
1:85.*
1:85.0~b3-1
1:86.*
1:86.0~b3-1
1:88.*
1:88.0~b2-1
1:89.*
1:89.0~b2-1
1:90.*
1:90.0~b2-1
1:91.*
1:91.0~b1-1
1:91.0~b3-1
1:91.0~b5-1
1:91.0-1
1:91.0.2-1
1:91.1.0-1
1:91.1.1-1
1:91.2.0-1
1:91.2.1-1
1:91.3.0-1
1:91.3.2-1
1:91.4.0-1
1:91.4.1-1~deb9u1
1:91.4.1-1~deb10u1
1:91.4.1-1~deb11u1
1:91.4.1-1
1:91.5.0-1~deb9u1
1:91.5.0-1
1:91.5.0-2~deb10u1
1:91.5.0-2~deb11u1
1:91.5.0-2
1:91.5.1-1
1:91.6.0-1~deb9u1
1:91.6.0-1~deb10u1
1:91.6.0-1~deb11u1
1:91.6.0-1
1:91.6.1-1~deb9u1
1:91.6.1-1~deb10u1
1:91.6.1-1~deb11u1
1:91.6.1-1
1:91.6.2-1~deb9u1
1:91.6.2-1~deb10u1
1:91.6.2-1~deb11u1
1:91.6.2-1
1:91.7.0-1
1:91.7.0-2~deb9u1
1:91.7.0-2~deb10u1
1:91.7.0-2~deb11u1
1:91.7.0-2
1:91.8.0-1~deb9u1
1:91.8.0-1~deb10u1
1:91.8.0-1~deb11u1
1:91.8.0-1
1:91.8.1-1
1:91.9.0-1~deb9u1
1:91.9.0-1~deb10u1
1:91.9.0-1~deb11u1
1:91.9.0-1
1:91.10.0-1~deb9u1
1:91.10.0-1~deb10u1
1:91.10.0-1~deb11u1
1:91.10.0-1
1:91.11.0-1~deb10u1
1:91.11.0-1~deb11u1
1:91.11.0-1
1:91.12.0-1~deb10u1
1:91.12.0-1~deb11u1
1:91.13.0-1~deb10u1
1:91.13.0-1~deb11u1
1:102.*
1:102.0~b4-1
1:102.0~b7-1
1:102.0.1-1
1:102.0.2-1
1:102.1.0-1
1:102.1.1-1
1:102.1.2-1
1:102.2.0-1
1:102.2.1-1
1:102.2.2-1
1:102.3.0-1~deb10u1
1:102.3.0-1~deb11u1
1:102.3.0-1
1:102.3.1-1
1:102.3.2-1
1:102.3.3-1
1:102.4.0-1~deb10u1
1:102.4.0-1~deb11u1
1:102.4.0-1
1:102.4.1-1
1:102.5.0-1~deb10u1
1:102.5.0-1~deb11u1
1:102.5.0-1
1:102.5.1-1
1:102.6.0-1~deb10u1
1:102.6.0-1~deb11u1
1:102.6.0-1
1:102.7.1-1
1:102.7.1+1-1
1:102.7.2-1
1:102.8.0-1~deb10u1
1:102.8.0-1~deb11u1
1:102.8.0-1
1:102.9.0-1~deb10u1
1:102.9.0-1~deb11u1
1:102.9.0-1
1:102.9.1-1
1:102.10.0-1~deb10u1
Ecosystem specific
{ "urgency": "not yet assigned" }
Debian:12
/
thunderbird
Package
Name
thunderbird
Purl
pkg:deb/debian/thunderbird?arch=source
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:102.10.0-1
Ecosystem specific
{ "urgency": "not yet assigned" }
Debian:13
/
thunderbird
Package
Name
thunderbird
Purl
pkg:deb/debian/thunderbird?arch=source
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:102.10.0-1
Ecosystem specific
{ "urgency": "not yet assigned" }
CVE-2023-29479 - OSV