VulnerableCode Package Details - pkg:rpm/redhat/bcel@6.4.1-9?arch=el9_0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/bcel@6.4.1-9?arch=el9_0

Essentials
History (1)

purl	pkg:rpm/redhat/bcel@6.4.1-9?arch=el9_0

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.5

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-4ke8-hhhy-efbk Aliases: CVE-2022-42920 GHSA-97xg-phpr-rg8q	Apache Commons BCEL vulnerable to out-of-bounds write Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an out-of-bounds writing issue, these APIs can be used to produce arbitrary bytecode. This could be abused in applications that pass attacker-controllable data to those APIs, giving the attacker more control over the resulting bytecode than otherwise expected. Update to Apache Commons BCEL 6.6.0.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T13:56:29.510820+00:00	RedHat Importer	Affected by	VCID-4ke8-hhhy-efbk	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-42920.json	38.0.0