Osgeo Shapelib vulnerabilities

1 known vulnerability affecting osgeo/shapelib.

Total CVEs

1

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

CRITICAL1

Vulnerabilities

Page 1 of 1

CVE-2022-0699CRITICALCVSS 9.8≤ 1.5.0vshapelib 1.5.0 and older releases2022-10-17

CVE-2022-0699 [CRITICAL] CWE-416 CVE-2022-0699: A double-free condition exists in contrib/shpsort.c of shapelib 1.5.0 and older releases. This issue A double-free condition exists in contrib/shpsort.c of shapelib 1.5.0 and older releases. This issue may allow an attacker to cause a denial of service or have other unspecified impact via control over malloc.