PYSEC-2022-43144

See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/patchelf/PYSEC-2022-43144.yaml
JSON Data
https://api.test.osv.dev/v1/vulns/PYSEC-2022-43144
Aliases
Published
2022-12-19T22:15:00Z
Modified
2024-11-25T22:42:31.798320Z
Severity
  • 9.1 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVSS Calculator
Summary
[none]
Details

Patchelf v0.9 was discovered to contain an out-of-bounds read via the function modifyRPath at src/patchelf.cc.

References

Affected packages

PyPI / patchelf

Package

Name
patchelf
View open source insights on deps.dev
Purl
pkg:pypi/patchelf

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.16.1.0

Affected versions

0.*

0.11.0.0
0.12.0.0
0.13.0.0
0.13.1.0
0.14.0.0
0.14.1.0
0.14.2.0
0.14.3.0
0.14.5.0
0.15.0.0