Lucene search

Veracode Vulnerability DatabaseVERACODE:38482

HistoryDec 15, 2022 - 1:44 a.m.

Out-Of-Bounds Read

2022-12-1501:44:45

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

capnproto vulnerability

out-of-bounds read

memory exfiltration

crash

sensitive information disclosure

software

EPSS

0.002

Percentile

51.6%

JSON

capnproto is vulnerable to out-of-bounds reads. The out-of-bounds read vulnerability may lead to exfiltration of memory resulting in crashes or perhaps disclosure of sensitive information.

References

github.com/capnproto/capnproto/commit/25d34c67863fd960af34fc4f82a7ca3362ee74b9

github.com/capnproto/capnproto/security/advisories/GHSA-qqff-4vw4-f6hx

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EAHKLUMJAXJEV5BPBS5XXWBQ3ZTHGOLY/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PTS6TWD6K2NKXLEEFBPROQXMOFUTEYWY/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WKXM4JAFXLTXU5IQB3OUBQVCIICZWGYX/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZOCQQOPMVQOFUWBWAGVGN76OYAV3WXY4/

lists.fedoraproject.org/archives/list/[email protected]/message/EAHKLUMJAXJEV5BPBS5XXWBQ3ZTHGOLY/

lists.fedoraproject.org/archives/list/[email protected]/message/PTS6TWD6K2NKXLEEFBPROQXMOFUTEYWY/

lists.fedoraproject.org/archives/list/[email protected]/message/WKXM4JAFXLTXU5IQB3OUBQVCIICZWGYX/

lists.fedoraproject.org/archives/list/[email protected]/message/ZOCQQOPMVQOFUWBWAGVGN76OYAV3WXY4/

security-tracker.debian.org/tracker/CVE-2022-46149

EPSS

0.002

Percentile

51.6%

JSON

Related for VERACODE:38482