{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/36337?format=json","vulnerability_id":"VCID-whzh-ab71-sybb","summary":"Patchelf v0.9 was discovered to contain an out-of-bounds read via the function modifyRPath at src/patchelf.cc.","aliases":[{"alias":"CVE-2022-44940"},{"alias":"GHSA-5pcj-3m26-w633"},{"alias":"PYSEC-2022-43144"},{"alias":"PYSEC-2022-43151"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/30396?format=json","purl":"pkg:pypi/patchelf@0.16.1.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.16.1.0"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/30386?format=json","purl":"pkg:pypi/patchelf@0.11.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-whzh-ab71-sybb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.11.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/30387?format=json","purl":"pkg:pypi/patchelf@0.12.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-whzh-ab71-sybb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.12.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/30388?format=json","purl":"pkg:pypi/patchelf@0.13.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-whzh-ab71-sybb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.13.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/30389?format=json","purl":"pkg:pypi/patchelf@0.13.1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-whzh-ab71-sybb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.13.1.0"},{"url":"http://public2.vulnerablecode.io/api/packages/30390?format=json","purl":"pkg:pypi/patchelf@0.14.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-whzh-ab71-sybb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.14.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/30391?format=json","purl":"pkg:pypi/patchelf@0.14.1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-whzh-ab71-sybb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.14.1.0"},{"url":"http://public2.vulnerablecode.io/api/packages/30392?format=json","purl":"pkg:pypi/patchelf@0.14.2.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-whzh-ab71-sybb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.14.2.0"},{"url":"http://public2.vulnerablecode.io/api/packages/30393?format=json","purl":"pkg:pypi/patchelf@0.14.3.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-whzh-ab71-sybb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.14.3.0"},{"url":"http://public2.vulnerablecode.io/api/packages/30394?format=json","purl":"pkg:pypi/patchelf@0.14.5.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-whzh-ab71-sybb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.14.5.0"},{"url":"http://public2.vulnerablecode.io/api/packages/30395?format=json","purl":"pkg:pypi/patchelf@0.15.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-whzh-ab71-sybb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/patchelf@0.15.0.0"}],"references":[{"reference_url":"https://github.com/NixOS/patchelf/pull/419","reference_id":"","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"}],"url":"https://github.com/NixOS/patchelf/pull/419"}],"weaknesses":[],"exploits":[],"severity_range_score":"9.1 - 9.1","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-whzh-ab71-sybb"}