File tree 2 files changed +72
-0
lines changed
2 files changed +72
-0
lines changed Original file line number Diff line number Diff line change 1+ {
2+ "id" : " GO-2022-1188"
3+ "published" : " 0001-01-01T00:00:00Z"
4+ "modified" : " 0001-01-01T00:00:00Z"
5+ "aliases" : [
6+ " CVE-2022-4741"
7+ " GHSA-qvx2-59g8-8hph"
8+ ],
9+ "details" : " An attacker can remotely supply a specially crafted input that causes uncontrolled memory allocation."
10+ "affected" : [
11+ {
12+ "package" : {
13+ "name" : " code.sajari.com/docconv"
14+ "ecosystem" : " Go"
15+ },
16+ "ranges" : [
17+ {
18+ "type" : " SEMVER"
19+ "events" : [
20+ {
21+ "introduced" : " 0"
22+ },
23+ {
24+ "fixed" : " 1.2.1"
25+ }
26+ ]
27+ }
28+ ],
29+ "database_specific" : {
30+ "url" : " https://pkg.go.dev/vuln/GO-2022-1188"
31+ },
32+ "ecosystem_specific" : {
33+ "imports" : [
34+ {
35+ "path" : " code.sajari.com/docconv/docd"
36+ "symbols" : [
37+ " main"
38+ " serve"
39+ ]
40+ }
41+ ]
42+ }
43+ }
44+ ],
45+ "references" : [
46+ {
47+ "type" : " FIX"
48+ "url" : " https://github.com/sajari/docconv/commit/42bcff666855ab978e67a9041d0cdea552f20301"
49+ }
50+ ],
51+ "schema_version" : " 1.3.1"
52+ }
Original file line number Diff line number Diff line change 1+ modules :
2+ - module : code.sajari.com/docconv
3+ versions :
4+ - fixed : 1.2.1
5+ vulnerable_at : 1.2.0
6+ packages :
7+ - package : code.sajari.com/docconv/docd
8+ symbols :
9+ - serve
10+ derived_symbols :
11+ - main
12+ description : |
13+ An attacker can remotely supply a specially crafted input that causes
14+ uncontrolled memory allocation.
15+ cves :
16+ - CVE-2022-4741
17+ ghsas :
18+ - GHSA-qvx2-59g8-8hph
19+ references :
20+ - fix : https://github.com/sajari/docconv/commit/42bcff666855ab978e67a9041d0cdea552f20301
You can’t perform that action at this time.
0 commit comments