DEBIAN-CVE-2023-49287

See a problem?
Please try reporting it to the source first.

Source

https://security-tracker.debian.org/tracker/CVE-2023-49287

Import Source

https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2023-49287.json

JSON Data

https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2023-49287

Upstream

CVE-2023-49287

Published

2023-12-04T06:15:07.173Z

Modified

2025-11-17T04:26:18.349152Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

TinyDir is a lightweight C directory and file reader. Buffer overflows in the tinydir_file_open() function. This vulnerability has been patched in version 1.2.6.

References

https://security-tracker.debian.org/tracker/CVE-2023-49287

Affected packages

Debian:12

falcosecurity-libs

Package

Name: falcosecurity-libs
Purl: pkg:deb/debian/falcosecurity-libs?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.1.1dev+git20220316.e5c53d64-5.1

0.11.3+repack-1

0.11.3+repack-2

0.11.3+repack-3

0.11.3+repack-4

0.11.3+repack-5

0.11.3+repack-6

0.14.1-1

0.14.1-2

0.14.1-3

0.14.1-3.1~exp1

0.14.1-4

0.14.1-5

0.14.1-5.1

0.15.1-1

0.15.1-2

0.15.1-3

0.15.1-4

0.18.1-1

0.18.1-2

0.20.0-1

0.20.0-2

0.20.0-3

0.20.0-4

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2023-49287.json"

gemmi

Package

Name: gemmi
Purl: pkg:deb/debian/gemmi?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.5.7+ds-2

0.5.8+ds-1

0.6.0+ds-1

0.6.1+ds-1

0.6.2+ds-1

0.6.2+ds-2

0.6.2+ds-3

0.6.2+ds-4

0.6.2+ds-5

0.6.3+ds-1

0.6.4+ds-1

0.6.5+ds-1

0.6.5+ds-2

0.6.5+ds-3

0.7.1+ds-1~exp1

0.7.1+ds-1

0.7.1+ds-2

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2023-49287.json"

Debian:13

falcosecurity-libs

Package

Name: falcosecurity-libs
Purl: pkg:deb/debian/falcosecurity-libs?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.14.1-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2023-49287.json"

gemmi

Package

Name: gemmi
Purl: pkg:deb/debian/gemmi?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.6.4+ds-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2023-49287.json"

Debian:14

falcosecurity-libs

Package

Name: falcosecurity-libs
Purl: pkg:deb/debian/falcosecurity-libs?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.14.1-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2023-49287.json"

gemmi

Package

Name: gemmi
Purl: pkg:deb/debian/gemmi?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.6.4+ds-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2023-49287.json"