CVE-2023-49287

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-49287

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-49287.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-49287

Aliases

GHSA-jf5r-wgf4-qhxf

Related

UBUNTU-CVE-2023-49287

Published

2023-12-04T06:15:07Z

Modified

2025-01-02T05:49:50.490461Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

TinyDir is a lightweight C directory and file reader. Buffer overflows in the tinydir_file_open() function. This vulnerability has been patched in version 1.2.6.

References

Affected packages

Debian:12 / falcosecurity-libs

Package

Name: falcosecurity-libs
Purl: pkg:deb/debian/falcosecurity-libs?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.1.1dev+git20220316.e5c53d64-5.1

0.11.3+repack-1

0.11.3+repack-2

0.11.3+repack-3

0.11.3+repack-4

0.11.3+repack-5

0.11.3+repack-6

0.14.1-1

0.14.1-2

0.14.1-3

0.14.1-3.1~exp1

0.14.1-4

0.14.1-5

0.14.1-5.1

0.15.1-1

0.15.1-2

0.15.1-3

0.15.1-4

0.18.1-1

0.18.1-2

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / falcosecurity-libs

Package

Name: falcosecurity-libs
Purl: pkg:deb/debian/falcosecurity-libs?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.14.1-1

Affected versions

0.*

0.1.1dev+git20220316.e5c53d64-5.1

0.11.3+repack-1

0.11.3+repack-2

0.11.3+repack-3

0.11.3+repack-4

0.11.3+repack-5

0.11.3+repack-6

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / gemmi

Package

Name: gemmi
Purl: pkg:deb/debian/gemmi?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.5.7+ds-2

0.5.8+ds-1

0.6.0+ds-1

0.6.1+ds-1

0.6.2+ds-1

0.6.2+ds-2

0.6.2+ds-3

0.6.2+ds-4

0.6.2+ds-5

0.6.3+ds-1

0.6.4+ds-1

0.6.5+ds-1

0.6.5+ds-2

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / gemmi

Package

Name: gemmi
Purl: pkg:deb/debian/gemmi?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.6.4+ds-1

Affected versions

0.*

0.5.7+ds-2

0.5.8+ds-1

0.6.0+ds-1

0.6.1+ds-1

0.6.2+ds-1

0.6.2+ds-2

0.6.2+ds-3

0.6.2+ds-4

0.6.2+ds-5

0.6.3+ds-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/cxong/tinydir

Affected ranges

Type: GIT
Repo: https://github.com/cxong/tinydir
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

6ba79293a5e4ea015343e20453b4f4595c644515

Affected versions

1.*

1.1.0

1.1.1

1.2

1.2.1

1.2.2

1.2.3

1.2.4

1.2.5