PT-2022-27619 · Jettison+3 · Jettison+3

Bingdian-So

Published

2022-12-13

Updated

2024-06-15

CVE-2022-45693

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Jettison versions prior to 1.5.2

Description The issue allows attackers to cause a Denial of Service (DoS) via a crafted string, exploiting a stack overflow vulnerability through the map parameter.

Recommendations For versions prior to 1.5.2, update to version 1.5.2 or later to resolve the issue. As a temporary workaround, consider restricting the use of the map parameter to minimize the risk of exploitation.

Exploit

Fix

DoS

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2022-45693

DLA-3259-1

DSA-5312-1

GHSA-GRR4-WV38-F68W

OESA-2023-1914

OESA-2023-1965

OPENSUSE-SU-2024:12567-1

RHSA-2023:0552

RHSA-2023:0553

RHSA-2023:0554

RHSA-2023:1043

RHSA-2023:1044

RHSA-2023:1045

RHSA-2023:3610

RHSA-2025:1746

RHSA-2025:1747

USN-6177-1

Affected Products

Astra Linux

Jettison

Linuxmint

Ubuntu

PT-2022-27619 · Jettison+3 · Jettison+3

CVE-2022-45693

Weakness Enumeration

Related Identifiers

Affected Products

References · 33