Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-whzh-ab71-sybb

Summary Patchelf v0.9 was discovered to contain an out-of-bounds read via the function modifyRPath at src/patchelf.cc.

Aliases

alias	CVE-2022-44940

alias	GHSA-5pcj-3m26-w633

alias	PYSEC-2022-43144

alias	PYSEC-2022-43151

Fixed_packages

url	pkg:pypi/patchelf@0.16.1.0
purl	pkg:pypi/patchelf@0.16.1.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.16.1.0

Affected_packages

url pkg:pypi/patchelf@0.11.0.0

purl pkg:pypi/patchelf@0.11.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-whzh-ab71-sybb

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.11.0.0

url pkg:pypi/patchelf@0.12.0.0

purl pkg:pypi/patchelf@0.12.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-whzh-ab71-sybb

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.12.0.0

url pkg:pypi/patchelf@0.13.0.0

purl pkg:pypi/patchelf@0.13.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-whzh-ab71-sybb

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.13.0.0

url pkg:pypi/patchelf@0.13.1.0

purl pkg:pypi/patchelf@0.13.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-whzh-ab71-sybb

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.13.1.0

url pkg:pypi/patchelf@0.14.0.0

purl pkg:pypi/patchelf@0.14.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-whzh-ab71-sybb

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.14.0.0

url pkg:pypi/patchelf@0.14.1.0

purl pkg:pypi/patchelf@0.14.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-whzh-ab71-sybb

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.14.1.0

url pkg:pypi/patchelf@0.14.2.0

purl pkg:pypi/patchelf@0.14.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-whzh-ab71-sybb

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.14.2.0

url pkg:pypi/patchelf@0.14.3.0

purl pkg:pypi/patchelf@0.14.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-whzh-ab71-sybb

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.14.3.0

url pkg:pypi/patchelf@0.14.5.0

purl pkg:pypi/patchelf@0.14.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-whzh-ab71-sybb

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.14.5.0

url pkg:pypi/patchelf@0.15.0.0

purl pkg:pypi/patchelf@0.15.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-whzh-ab71-sybb

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.15.0.0

References

reference_url

https://github.com/NixOS/patchelf/pull/419

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

url

https://github.com/NixOS/patchelf/pull/419

Weaknesses

Exploits

Severity_range_score 9.1 - 9.1

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-whzh-ab71-sybb

Vulnerability Instance