CLSA-2022-1654011190
See a problem?- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1654011190.json
- JSON Data
- https://api.osv.dev/v1/vulns/CLSA-2022-1654011190
- Upstream
- Published
- 2022-05-31T15:33:10Z
- Modified
- 2026-06-04T10:04:09.388387195Z
- Summary
- Fix CVE(s): CVE-2022-1473, CVE-2022-1292
- Details
-
- SECURITY UPDATE: Improper Neutralization
- debian/patches/CVE-2022-1292.patch: restrict using shell to invoke openssl due to possible privilege escalation
- debian/patches/CVE-2022-1473.patch: fix bug OPENSSLLHflush() memory releasing leading to DoS
- CVE-2022-1292
- CVE-2022-1473
- SECURITY UPDATE: Improper Neutralization
- References
Affected packages
TuxCare:Ubuntu:16.04 / libssl-dev
Package
- Name
- libssl-dev
- Purl
- pkg:deb/tuxcare/libssl-dev?distro=ubuntu-16.04
TuxCare:Ubuntu:16.04 / libssl-doc
Package
- Name
- libssl-doc
- Purl
- pkg:deb/tuxcare/libssl-doc?distro=ubuntu-16.04
TuxCare:Ubuntu:16.04 / libssl1.0.0
Package
- Name
- libssl1.0.0
- Purl
- pkg:deb/tuxcare/libssl1.0.0?distro=ubuntu-16.04