CLSA-2022-1657817606

Import Source

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2022-1657817606

Upstream

Published

2022-07-14T16:53:26Z

Modified

2026-06-01T00:33:15.673580284Z

Summary

Fixed CVEs in openssl: CVE-2022-1292, CVE-2022-2068

Details

CVE-2022-1292: c_rehash: Do not use shell to invoke openssl to prevent command injection
CVE-2022-2068: c_rehash: Fix file operations to prevent command injection

References

Affected packages

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.1e-63.el6.tuxcare.els7

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2022-1657817606.json"

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.1e-63.el6.tuxcare.els7

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2022-1657817606.json"

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.1e-63.el6.tuxcare.els7

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2022-1657817606.json"

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.1e-63.el6.tuxcare.els7

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2022-1657817606.json"