CVE-2022-1249

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-1249

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-1249.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-1249

Downstream

UBUNTU-CVE-2022-1249

Published

2022-04-29T16:15:08.807Z

Modified

2026-03-14T11:24:08.619121Z

Severity

3.3 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVSS Calculator

Summary

[none]

Details

A NULL pointer dereference flaw was found in pesign's cmssetpwdata() function of the cmscommon.c file. The function fails to handle the NULL pwdata invocation from daemon.c, which leads to an explicit NULL dereference and crash on all attempts to daemonize pesign.

References

https://bugzilla.redhat.com/show_bug.cgi?id=2065771

Affected packages

Git /

Affected ranges

Database specific

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "fixed": "115"
            }
        ]
    }
]

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-1249.json"