CVE-2022-31307

Source
https://cve.org/CVERecord?id=CVE-2022-31307
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-31307.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-31307
Published
2022-06-21T13:15:08.287Z
Modified
2026-04-12T02:56:48.370557Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njsstringoffset at src/njs_string.c.

References

Affected packages

Git / github.com/nginx/njs

Affected ranges

Type
GIT
Repo
https://github.com/nginx/njs
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
Fixed
Database specific
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "0.7.2"
        }
    ]
}

Affected versions

0.*
0.1.0
0.1.1
0.1.10
0.1.11
0.1.12
0.1.13
0.1.14
0.1.15
0.1.2
0.1.3
0.1.4
0.1.5
0.1.6
0.1.7
0.1.8
0.1.9
0.2.0
0.2.1
0.2.2
0.2.3
0.2.4
0.2.5
0.2.6
0.2.7
0.2.8
0.3.0
0.3.1
0.3.2
0.3.3
0.3.4
0.3.5
0.3.6
0.3.7
0.3.8
0.3.9
0.4.0
0.4.1
0.4.2
0.4.3
0.4.4
0.5.0
0.5.1
0.5.2
0.5.3
0.6.0
0.6.1
0.6.2
0.7.0
0.7.1
0.7.2
0.7.3

Database specific

vanir_signatures
[
    {
        "id": "CVE-2022-31307-1f6846bf",
        "target": {
            "function": "njs_object_iterate_reverse",
            "file": "src/njs_iterator.c"
        },
        "signature_version": "v1",
        "source": "https://github.com/nginx/njs/commit/eafe4c7a326b163612f10861392622b5da5b1792",
        "signature_type": "Function",
        "digest": {
            "function_hash": "103444818782418243579072543539988804643",
            "length": 2727.0
        },
        "deprecated": false
    },
    {
        "id": "CVE-2022-31307-6ec364fd",
        "target": {
            "file": "src/njs_iterator.c"
        },
        "signature_version": "v1",
        "source": "https://github.com/nginx/njs/commit/eafe4c7a326b163612f10861392622b5da5b1792",
        "signature_type": "Line",
        "digest": {
            "line_hashes": [
                "31332087060590309975530342363338135404",
                "81384505419341664089187724240160896991",
                "279086156151675448253248787254774324798",
                "229719608985720382728834512096249842775",
                "307488796212254766280894295833538516605",
                "102801281721691388712997364811092385682"
            ],
            "threshold": 0.9
        },
        "deprecated": false
    },
    {
        "id": "CVE-2022-31307-9585d335",
        "target": {
            "file": "src/test/njs_unit_test.c"
        },
        "signature_version": "v1",
        "source": "https://github.com/nginx/njs/commit/eafe4c7a326b163612f10861392622b5da5b1792",
        "signature_type": "Line",
        "digest": {
            "line_hashes": [
                "270962405635539349045306700829155569547",
                "46702355503848243507095770144150209238",
                "322332007203446702768211235095523626994"
            ],
            "threshold": 0.9
        },
        "deprecated": false
    }
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-31307.json"
vanir_signatures_modified
"2026-04-12T02:56:48Z"