CLSA-2022-1643637259

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1643637259.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2022-1643637259
Upstream
Published
2022-01-31T13:54:19Z
Modified
2026-06-04T09:45:58.560213273Z
Summary
Fix CVE(s): CVE-2017-12424, CVE-2018-7169
Details
  • SECURITY UPDATE: Crash or buffer overflow
    • debian/patches/CVE-2017-12424.patch: fix buffer overflow if NULL line is present in db in lib/commonio.c.
    • CVE-2017-12424
  • SECURITY UPDATE: Access to privileged information
    • debian/patches/CVE-2018-7169.patch: newgidmap: enforce setgroups=deny if self-mapping a group in src/newgidmap.c.
    • CVE-2018-7169
References

Affected packages

TuxCare:Ubuntu:16.04 / login

Package

Name
login
Purl
pkg:deb/tuxcare/login?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:4.2-3.1ubuntu5.5+tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1643637259.json"

TuxCare:Ubuntu:16.04 / passwd

Package

Name
passwd
Purl
pkg:deb/tuxcare/passwd?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:4.2-3.1ubuntu5.5+tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1643637259.json"

TuxCare:Ubuntu:16.04 / uidmap

Package

Name
uidmap
Purl
pkg:deb/tuxcare/uidmap?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:4.2-3.1ubuntu5.5+tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1643637259.json"