CVE-2022-25147
Summary
| CVE | CVE-2022-25147 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2023-01-31 16:15:00 UTC |
|---|
| Updated | 2024-03-15 11:15:00 UTC |
|---|
| Description | Integer Overflow or Wraparound vulnerability in apr_base64 functions of Apache Portable Runtime Utility (APR-util) allows an attacker to write beyond bounds of a buffer. This issue affects Apache Portable Runtime Utility (APR-util) 1.6.1 and prior versions. |
|---|
NVD Known Affected Configurations (CPE 2.3)
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 160636 Oracle Enterprise Linux Security Update for apr-util (ELSA-2023-3147)
- 160646 Oracle Enterprise Linux Security Update for apr-util (ELSA-2023-3145)
- 160684 Oracle Enterprise Linux Security Update for apr-util (ELSA-2023-3109)
- 181599 Debian Security Update for apr-util (DLA 3332-1)
- 181661 Debian Security Update for apr-util (DSA 5364-1)
- 183256 Debian Security Update for apr-util (CVE-2022-25147)
- 199176 Ubuntu Security Notification for apr-util Vulnerability (USN-5870-1)
- 241508 Red Hat Update for apr-util (RHSA-2023:3109)
- 241516 Red Hat Update for apr-util (RHSA-2023:3147)
- 241522 Red Hat Update for apr-util (RHSA-2023:3145)
- 241525 Red Hat Update for apr-util (RHSA-2023:3146)
- 241543 Red Hat Update for apr-util (RHSA-2023:3178)
- 241573 Red Hat Update for apr-util (RHSA-2023:3360)
- 241574 Red Hat Update for JBoss Core Services (RHSA-2023:3354)
- 241662 Red Hat Update for apr-util (RHSA-2023:3380)
- 241679 Red Hat Update for apr-util (RHSA-2023:3177)
- 257236 CentOS Security Update for apr-util (CESA-2023:3145)
- 354754 Amazon Linux Security Advisory for apr-util : ALAS-2023-1684
- 354763 Amazon Linux Security Advisory for apr-util : ALAS2-2023-1937
- 355057 Amazon Linux Security Advisory for apr-util : AL2012-2023-381
- 355192 Amazon Linux Security Advisory for apr-util : ALAS2023-2023-066
- 378372 IBM Hypertext Transfer Protocol (HTTP) Server Multiple Vulnerabilities (6955577)
- 378510 Alibaba Cloud Linux Security Update for apr-util (ALINUX2-SA-2023:0023)
- 378538 Alibaba Cloud Linux Security Update for apr-util (ALINUX3-SA-2023:0046)
- 379261 F5 BIG-IP Apache Integer Overflow Vulnerability (K000137702)
- 502649 Alpine Linux Security Update for apr
- 502650 Alpine Linux Security Update for apr-util
- 503862 Alpine Linux Security Update for apr-util
- 503864 Alpine Linux Security Update for apr
- 672977 EulerOS Security Update for apr-util (EulerOS-SA-2023-1835)
- 673012 EulerOS Security Update for apr-util (EulerOS-SA-2023-1860)
- 673040 EulerOS Security Update for apr-util (EulerOS-SA-2023-1947)
- 673048 EulerOS Security Update for apr-util (EulerOS-SA-2023-1969)
- 673081 EulerOS Security Update for apr-util (EulerOS-SA-2023-2185)
- 673093 EulerOS Security Update for apr-util (EulerOS-SA-2023-2136)
- 673133 EulerOS Security Update for apr-util (EulerOS-SA-2023-2283)
- 673148 EulerOS Security Update for apr-util (EulerOS-SA-2023-2259)
- 753656 SUSE Enterprise Linux Security Update for apr-util (SUSE-SU-2023:0325-1)
- 753657 SUSE Enterprise Linux Security Update for apr-util (SUSE-SU-2023:0324-1)
- 753665 SUSE Enterprise Linux Security Update for libapr-util1 (SUSE-SU-2023:0337-1)
- 753683 SUSE Enterprise Linux Security Update for apr-util (SUSE-SU-2023:0389-1)
- 905382 Common Base Linux Mariner (CBL-Mariner) Security Update for apr-util (13206)
- 905385 Common Base Linux Mariner (CBL-Mariner) Security Update for apr-util (13212)
- 905476 Common Base Linux Mariner (CBL-Mariner) Security Update for apr-util (13206-1)
- 905518 Common Base Linux Mariner (CBL-Mariner) Security Update for apr-util (13212-1)
- 941087 AlmaLinux Security Update for apr-util (ALSA-2023:3109)
- 941121 AlmaLinux Security Update for apr-util (ALSA-2023:3147)
- 960927 Rocky Linux Security Update for apr-util (RLSA-2023:3109)
- 960948 Rocky Linux Security Update for apr-util (RLSA-2023:3147)
