CVE-2022-0699 | THREATINT

Description

A double-free condition exists in contrib/shpsort.c of shapelib 1.5.0 and older releases. This issue may allow an attacker to cause a denial of service or have other unspecified impact via control over malloc.

PUBLISHED Reserved 2022-02-21 | Published 2022-10-17 | Updated 2026-01-24 | Assigner fedora

Problem types

CWE-416

References

github.com/OSGeo/shapelib/issues/39

github.com/...ommit/c75b9281a5b9452d92e1682bdfe6019a13ed819f

lists.debian.org/debian-lts-announce/2026/01/msg00023.html

github.com/OSGeo/shapelib/issues/39

github.com/...ommit/c75b9281a5b9452d92e1682bdfe6019a13ed819f

cve.org (CVE-2022-0699)

nvd.nist.gov (CVE-2022-0699)

Download JSON