CVE-2022-48468
Summary
| CVE | CVE-2022-48468 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2023-04-13 21:15:00 UTC |
|---|
| Updated | 2023-11-07 03:56:00 UTC |
|---|
| Description | protobuf-c before 1.4.1 has an unsigned integer overflow in parse_required_member. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| [SECURITY] Fedora 37 Update: libsignal-protocol-c-2.3.3-8.fc37 - package-announce - Fedora Mailing-Lists |
FEDORA |
lists.fedoraproject.org |
|
| unsigned integer overflow · Issue #499 · protobuf-c/protobuf-c · GitHub |
MISC |
github.com |
|
| Merge pull request #513 from protobuf-c/edmonds/issue499 · protobuf-c/protobuf-c@ec3d900 · GitHub |
MISC |
github.com |
|
| Release protobuf-c 1.4.1 · protobuf-c/protobuf-c · GitHub |
MISC |
github.com |
|
| [SECURITY] Fedora 37 Update: libsignal-protocol-c-2.3.3-8.fc37 - package-announce - Fedora Mailing-Lists |
|
lists.fedoraproject.org |
|
| [SECURITY] Fedora 38 Update: libsignal-protocol-c-2.3.3-9.fc38 - package-announce - Fedora Mailing-Lists |
FEDORA |
lists.fedoraproject.org |
|
| [SECURITY] Fedora 38 Update: libsignal-protocol-c-2.3.3-9.fc38 - package-announce - Fedora Mailing-Lists |
|
lists.fedoraproject.org |
|
| Fix issue #499: unsigned integer overflow by edmonds · Pull Request #513 · protobuf-c/protobuf-c · GitHub |
MISC |
github.com |
|
| [SECURITY] Fedora 36 Update: libsignal-protocol-c-2.3.3-7.fc36 - package-announce - Fedora Mailing-Lists |
|
lists.fedoraproject.org |
|
| [SECURITY] Fedora 36 Update: libsignal-protocol-c-2.3.3-7.fc36 - package-announce - Fedora Mailing-Lists |
FEDORA |
lists.fedoraproject.org |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 161080 Oracle Enterprise Linux Security Update for protobuf-c (ELSA-2023-6621)
- 161139 Oracle Enterprise Linux Security Update for protobuf-c (ELSA-2023-6944)
- 183756 Debian Security Update for libsignal-protocol-cprotobuf-c (CVE-2022-48468)
- 242316 Red Hat Update for protobuf-c (RHSA-2023:6621)
- 242425 Red Hat Update for protobuf-c (RHSA-2023:6944)
- 242860 Red Hat Update for protobuf-c (RHSA-2024:0406)
- 283950 Fedora Security Update for libsignal (FEDORA-2023-8b0938312e)
- 283951 Fedora Security Update for libsignal (FEDORA-2023-6cfe134db6)
- 284165 Fedora Security Update for libsignal (FEDORA-2023-4e094d5297)
- 355606 Amazon Linux Security Advisory for protobuf-c : ALAS2-2023-2142
- 379250 Alibaba Cloud Linux Security Update for protobuf-c (ALINUX3-SA-2024:0004)
- 673179 EulerOS Security Update for protobuf-c (EulerOS-SA-2023-2338)
- 673198 EulerOS Security Update for protobuf-c (EulerOS-SA-2023-2318)
- 673226 EulerOS Security Update for protobuf-c (EulerOS-SA-2023-2365)
- 673234 EulerOS Security Update for protobuf-c (EulerOS-SA-2023-2391)
- 673419 EulerOS Security Update for protobuf-c (EulerOS-SA-2023-3148)
- 673819 EulerOS Security Update for protobuf-c (EulerOS-SA-2023-2704)
- 673944 EulerOS Security Update for protobuf-c (EulerOS-SA-2023-2662)
- 753939 SUSE Enterprise Linux Security Update for protobuf-c (SUSE-SU-2023:1979-1)
- 753983 SUSE Enterprise Linux Security Update for protobuf-c (SUSE-SU-2023:2143-1)
- 906810 Common Base Linux Mariner (CBL-Mariner) Security Update for protobuf-c (26115-1)
- 906841 Common Base Linux Mariner (CBL-Mariner) Security Update for protobuf-c (26159-1)
- 941411 AlmaLinux Security Update for protobuf-c (ALSA-2023:6621)
- 941441 AlmaLinux Security Update for protobuf-c (ALSA-2023:6944)
