CVE-2022-48554: File before 5.43 has an stack-based buffer over-read in file_copystr in funcs.c. NOTE: "File" is the name of an Open Source project.

medium5.5CVSS 3.1

AVLACLPRNUIRSUCNINAH

File before 5.43 has an stack-based buffer over-read in file_copystr in funcs.c. NOTE: "File" is the name of an Open Source project.

14 ranges

Vendor	Product	Version range	Fixed in
apple	ios_17.4_and_ipados	—	—
apple	macos_sonoma	—	—
apple	tvos	—	—
apple	watchos	—	—
debian	debian_linux	—	—
debian	file	< file 1:5.44-1 (bookworm)	file 1:5.44-1 (bookworm)
file_project	file	—	—
file_project	file	>= 0 < 1:5.39-3+deb11u1	1:5.39-3+deb11u1
file_project	file	>= 0 < 1:5.44-1	1:5.44-1
file_project	file	>= 0 < 1:5.44-1	1:5.44-1
file_project	file	>= 0 < 1:5.44-1	1:5.44-1
msrc	cbl2_file_5.40-3_on_cbl_mariner_2.0	—	—
msrc	cbl_mariner_2.0_arm	—	—
msrc	cbl_mariner_2.0_x64	—	—

nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

osv5.5MEDIUM