CVE-2022-47021
- Source
- https://cve.org/CVERecord?id=CVE-2022-47021
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-47021.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-47021
- Downstream
- Related
- Published
- 2023-01-20T19:15:17.550Z
- Modified
- 2025-11-20T12:11:32.353442Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A null pointer dereference issue was discovered in functions opgetdata and op_open1 in opusfile.c in xiph opusfile 0.9 thru 0.12 allows attackers to cause denial of service or other unspecified impacts.
- References
-
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ODIA6QRIRBNF2HRXOE5VCZ2AFP4ZB4R/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4LIKBLOE433RA44YTYUZLED4IOWJG5DV/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ED4CWLBR2WQ2IXXTHZ24UYZBRNCLMJXH/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MYPAQANM2ZNPXRBFOS5NFXNJ7O4Q3OBD/
- https://github.com/xiph/opusfile/commit/0a4cd796df5b030cb866f3f4a5e41a4b92caddf5
- https://github.com/xiph/opusfile/issues/36
Affected packages
Git / github.com/xiph/opusfile
Affected ranges
- Type
- GIT
- Repo
- https://github.com/xiph/opusfile
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Database specific
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-47021.json"
vanir_signatures
[
{
"source": "https://github.com/xiph/opusfile/commit/0a4cd796df5b030cb866f3f4a5e41a4b92caddf5",
"digest": {
"line_hashes": [
"130767672307147289407420356559775706029",
"13317614848687912484193478925602636191",
"144553095702598871125400013378138582395",
"200013815770376048462406562066036482636",
"139408764762257582073874266626380380189",
"269018161722186257905673236517628259590",
"128948526805784082996200560188643188646",
"20540233520340268411095201284128365705"
],
"threshold": 0.9
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Line",
"target": {
"file": "src/opusfile.c"
},
"id": "CVE-2022-47021-16c8be16"
},
{
"source": "https://github.com/xiph/opusfile/commit/0a4cd796df5b030cb866f3f4a5e41a4b92caddf5",
"digest": {
"length": 369.0,
"function_hash": "303514918919810935869497108359724706223"
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Function",
"target": {
"file": "src/opusfile.c",
"function": "op_get_data"
},
"id": "CVE-2022-47021-3d679de0"
},
{
"source": "https://github.com/xiph/opusfile/commit/0a4cd796df5b030cb866f3f4a5e41a4b92caddf5",
"digest": {
"length": 1831.0,
"function_hash": "168853061540030313505212027813007375267"
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Function",
"target": {
"file": "src/opusfile.c",
"function": "op_open1"
},
"id": "CVE-2022-47021-491ab479"
}
]