CVE-2022-29973

Опубликовано: 02 мая 2022

Источник: debian

EPSS Низкий

Описание

relan exFAT 1.3.0 allows local users to obtain sensitive information (data from deleted files in the filesystem) in certain situations involving offsets beyond ValidDataLength.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
fuse-exfat	fixed	1.4.0-1	experimental	package
fuse-exfat	fixed	1.4.0-2		package
fuse-exfat	no-dsa		bookworm	package
fuse-exfat	no-dsa		bullseye	package
fuse-exfat	no-dsa		buster	package
fuse-exfat	no-dsa		stretch	package

Примечания

https://github.com/relan/exfat/issues/185
https://github.com/relan/exfat/commit/d7e780da261d6c74fc7583d987f841c92c468838 (v1.4.0)
https://github.com/relan/exfat/commit/d8d66f9a651b4223102af982b926043769c9428c (v1.4.0)

EPSS

Процентиль: 32%

0.00125

Низкий

Связанные уязвимости

CVE-2022-29973

CVSS3: 4.7

ubuntu

почти 4 года назад

relan exFAT 1.3.0 allows local users to obtain sensitive information (data from deleted files in the filesystem) in certain situations involving offsets beyond ValidDataLength.

CVE-2022-29973

CVSS3: 4.7

nvd

почти 4 года назад

relan exFAT 1.3.0 allows local users to obtain sensitive information (data from deleted files in the filesystem) in certain situations involving offsets beyond ValidDataLength.

GHSA-fmmx-gw34-42v3

CVSS3: 4.7

github

почти 4 года назад

relan exFAT 1.3.0 allows local users to obtain sensitive information (data from deleted files in the filesystem) in certain situations involving offsets beyond ValidDataLength.

EPSS

Процентиль: 32%

0.00125

Низкий