Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-40157HistoryOct 06, 2022 - 6:16 p.m.
CVE-2022-40157
2022-10-0618:16:00
Debian Security Bug Tracker
security-tracker.debian.org
14
oss-fuzz
jxpath
google
cna rules
security context
cve-2022-40157
breach
DISPUTED This record was originally reported by the oss-fuzz project who failed to consider the security context in which JXPath is intended to be used and failed to contact the JXPath maintainers prior to requesting the CVE allocation. The CVE was then allocated by Google in breach of the CNA rules. After review by the JXPath maintainers, the original report was found to be invalid.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libcommons-jxpath-java | <= 1.3-10 | libcommons-jxpath-java_1.3-10_all.deb |
| Debian | 11 | all | libcommons-jxpath-java | <= 1.3-10 | libcommons-jxpath-java_1.3-10_all.deb |
| Debian | 10 | all | libcommons-jxpath-java | <= 1.3-9 | libcommons-jxpath-java_1.3-9_all.deb |
| Debian | 999 | all | libcommons-jxpath-java | <= 1.3-10 | libcommons-jxpath-java_1.3-10_all.deb |
Related
cvelist
cvelist
CVE-2022-40157
1976-01-01 00:00:00
cnvd
cnvd
Apache Commons JXPath Buffer Overflow Vulnerability (CNVD-2022-73688)
2022-10-12 00:00:00
osv
osv
JXPath Out-of-bounds Write vulnerability
2022-10-06 18:52:04
github
github
JXPath Out-of-bounds Write vulnerability
2022-10-06 18:52:04
cve
cve
CVE-2022-40157
2022-10-06 18:16:23
nvd
nvd
CVE-2022-40157
2022-10-06 18:16:23
ubuntucve
ubuntucve
Related for DEBIANCVE:CVE-2022-40157