CVE-2022-0699Use After Free in Shapelib

CWE-416Use After FreeCWE-415Double Free6 documents6 sources
Severity
9.8CRITICALNVD
EPSS
0.9%
top 24.09%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
8
Osgeo ShapelibDebian ShapelibGoogle Chrome Chrome+5 more
Timeline
PublishedOct 17
Latest updateFeb 7

Description

A double-free condition exists in contrib/shpsort.c of shapelib 1.5.0 and older releases. This issue may allow an attacker to cause a denial of service or have other unspecified impact via control over malloc.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages10 packages

debiandebian/shapelib< shapelib 1.5.0-3 (bookworm)
Debianosgeo/shapelib< 1.5.0-2+deb11u1+3
NVDosgeo/shapelib1.5.0
CVEListV5osgeo/shapelibshapelib 1.5.0 and older releases

Patches

Patch: github.comPatch: github.com

🔴Vulnerability Details

2
OSV
CVE-2022-0699: A double-free condition exists in contrib/shpsort2022-10-17
GHSA
GHSA-j5p4-42cc-2j44: A double-free condition exists in contrib/shpsort2022-10-17

📋Vendor Advisories

3
Chrome
Stable Channel Update for Desktop: CVE-2023-06992023-02-07
Microsoft
A double-free condition exists in contrib/shpsort.c of shapelib 1.5.0 and older releases. This issue may allow an attacker to cause a denial of service or have other unspecified impact via control ove2022-10-11
Debian
CVE-2022-0699: shapelib - A double-free condition exists in contrib/shpsort.c of shapelib 1.5.0 and older ...2022