{"id":"CVE-2022-47629","details":"Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser.","modified":"2026-04-16T04:38:50.723420415Z","published":"2022-12-20T23:15:12.093Z","related":["ALSA-2023:0625","ALSA-2023:0626","CGA-rc8v-r6f2-q4r6","SUSE-SU-2023:0031-1","SUSE-SU-2023:0031-2","SUSE-SU-2023:0056-1","SUSE-SU-2023:0056-2","openSUSE-SU-2024:12595-1"],"references":[{"type":"WEB","url":"https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libksba.git%3Ba=commit%3Bh=f61a5ea4e0f6a80fd4b28ef0174bee77793cf070"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2022/12/msg00035.html"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/202212-07"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20230316-0011/"},{"type":"ADVISORY","url":"https://www.debian.org/security/2022/dsa-5305"},{"type":"FIX","url":"https://dev.gnupg.org/T6284"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/gpg/libksba","events":[{"introduced":"0"},{"fixed":"bffa9b346071725363a483db547e7dced9721cb5"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"1.6.3"}]}}],"versions":["debian/V0-0-0","debian/V0-2-0","debian/V0-2-1","debian/V0-2-2","debian/V0-2-3","debian/V0-4-0","debian/V0-4-1","debian/V0-4-2","debian/V0-4-3","debian/V0-4-4","debian/V0-4-5","debian/libksba-0-4-6","debian/libksba-0-4-7","debian/libksba-0-9-0","debian/libksba-0-9-1","debian/libksba-0-9-10","debian/libksba-0-9-11","debian/libksba-0-9-12","debian/libksba-0-9-2","debian/libksba-0-9-3","debian/libksba-0-9-4","debian/libksba-0-9-5","debian/libksba-0-9-6","debian/libksba-0-9-7","debian/libksba-0-9-8","debian/libksba-0-9-9","debian/libksba-0.9.13","debian/libksba-0.9.14","debian/libksba-0.9.15","debian/libksba-0.9.16","debian/libksba-1.0.1","debian/libksba-1.0.2","debian/libksba-1.0.3","debian/libksba-1.0.4","debian/libksba-1.0.5","debian/libksba-1.0.6","debian/libksba-1.0.7","debian/libksba-1.0.8","debian/libksba-1.1.0","libksba-1.2.0","libksba-1.3.0","libksba-1.3.1","libksba-1.3.2","libksba-1.3.3","libksba-1.3.4","libksba-1.3.5","libksba-1.4.0","libksba-1.5.0","libksba-1.5.1","libksba-1.6.0","libksba-1.6.1","libksba-1.6.2"],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"10.0"}]},{"events":[{"introduced":"0"},{"last_affected":"11.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-47629.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}