Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

Gentoo FoundationMGASA-2022-0485

HistoryDec 31, 2022 - 1:39 a.m.

Vulners
/
Mageia
/
Updated libksba packages fix security vulnerability

Updated libksba packages fix security vulnerability

2022-12-3101:39:00

Gentoo Foundation

advisories.mageia.org

libksba

packages

fix

integer overflow

vulnerability

crl signature parser

security

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

65.8%

JSON

Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser. (CVE-2022-47629)

OSVersionArchitecturePackageVersionFilename
Mageia8noarchlibksba< 1.5.0-1.2libksba-1.5.0-1.2.mga8

OS	Version	Architecture	Package	Version	Filename
Mageia	8	noarch	libksba	< 1.5.0-1.2	libksba-1.5.0-1.2.mga8

References

bugs.mageia.org/show_bug.cgi?id=31311

www.debian.org/security/2022/dsa-5305

www.gnupg.org/blog/20221017-pepe-left-the-ksba.html

cbl_mariner 2

nessus 47

oraclelinux 3

openvas 24

nvd 1

ibm 9

ubuntucve 1

ubuntu 2

redhat 51

osv 9

centos 1

amazon 2

debiancve 1

debian 2

rocky 2

photon 6

rosalinux 3

alpinelinux 1

redos 1

veracode 1

almalinux 2

prion 1

redhatcve 1

cve 1

cvelist 1

gentoo 1

cloudlinux 1

ics 1

oracle 1

cbl_mariner

CVE-2022-47629 affecting package libksba for versions less than 1.6.3-1

2023-01-17 16:46:45

CVE-2022-47629 affecting package libksba 1.3.5-3

2023-01-12 20:54:53

nessus

RHEL 9 : libksba (RHSA-2023:0626)

2023-02-07 00:00:00

Ubuntu 16.04 ESM : Libksba vulnerability (USN-5787-2)

2023-01-09 00:00:00

SUSE SLES12 Security Update : libksba (SUSE-SU-2023:0031-2)

2023-02-14 00:00:00

oraclelinux

libksba security update

2023-02-08 00:00:00

libksba security update

2023-02-07 00:00:00

libksba security update

2023-01-30 00:00:00

openvas

Huawei EulerOS: Security Advisory for libksba (EulerOS-SA-2023-2155)

2023-06-09 00:00:00

Debian: Security Advisory (DLA-3248-1)

2022-12-25 00:00:00

openSUSE: Security Advisory for libksba (SUSE-SU-2023:0056-1)

2024-03-04 00:00:00

nvd

CVE-2022-47629

2022-12-20 23:15:12

ibm

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to arbitrary code execution in Libksba ( CVE-2022-47629 )

2023-05-03 14:11:07

Security Bulletin: A vulnerability in libksba package affects Data Replication on Cloud Pak for Data

2023-11-07 20:35:56

Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to Libksba abitrary code execution vulnerability( CVE-2022-47629)

2023-07-05 22:08:29

ubuntucve

CVE-2022-47629

2022-12-20 00:00:00

ubuntu

Libksba vulnerability

2023-01-09 00:00:00

Libksba vulnerability

2023-01-05 00:00:00

redhat

(RHSA-2023:0594) Important: libksba security update

2023-02-06 16:19:16

(RHSA-2023:0624) Important: libksba security update

2023-02-07 15:21:57

(RHSA-2023:0626) Important: libksba security update

2023-02-07 15:24:12

osv

Important: libksba security update

2023-02-07 00:00:00

CVE-2022-47629

2022-12-20 23:15:12

libksba - security update

2022-12-21 00:00:00

centos

libksba security update

2023-02-20 16:15:30

amazon

Important: libksba

2023-05-11 17:49:00

Important: libksba

2023-05-25 17:41:00

debiancve

CVE-2022-47629

2022-12-20 23:15:12

debian

[SECURITY] [DLA 3248-1] libksba security update

2022-12-24 15:26:43

[SECURITY] [DSA 5305-1] libksba security update

2022-12-21 21:42:59

rocky

libksba security update

2023-02-16 06:35:04

libksba security update

2023-02-16 06:35:52

photon

Critical Photon OS Security Update - PHSA-2023-0511

2023-01-06 00:00:00

Critical Photon OS Security Update - PHSA-2023-0309

2023-01-06 00:00:00

Critical Photon OS Security Update - PHSA-2023-3.0-0511

2023-01-06 00:00:00

rosalinux

Advisory ROSA-SA-2023-2129

2023-03-07 10:01:35

Advisory ROSA-SA-2023-2170

2023-06-20 10:21:17

Advisory ROSA-SA-2023-2193

2023-07-18 11:25:52

alpinelinux

CVE-2022-47629

2022-12-20 23:15:12

redos

ROS-20221227-01

2022-12-27 00:00:00

veracode

Integer Overflow

2022-12-26 05:43:35

almalinux

Important: libksba security update

2023-02-07 00:00:00

Important: libksba security update

2023-02-07 00:00:00

prion

Integer overflow

2022-12-20 23:15:00

redhatcve

CVE-2022-47629

2023-01-17 10:34:55

cve

CVE-2022-47629

2022-12-20 23:15:12

cvelist

CVE-2022-47629

2022-12-20 00:00:00

gentoo

libksba: Remote Code Execution

2022-12-28 00:00:00

cloudlinux

libksba: Fix of 2 CVEs

2023-12-01 15:38:16

ics

Siemens SCALANCE XCM-/XRM-300

2024-02-15 12:00:00

oracle

Oracle Critical Patch Update Advisory - April 2023

2023-04-18 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

65.8%

JSON

Related for MGASA-2022-0485