4.4 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): LOCAL
- Attack complexity (AC): LOW
- Privileges required (PR): NONE
- User interaction (UI): REQUIRED
- Scope (S): UNCHANGED
- Confidentiality impact (C): LOW
- Integrity impact (I): NONE
- Availability impact (A): LOW
Heap out of bound read in builtin.c
A heap out-of-bounds read flaw was found in builtin.c in the gawk package. This issue may lead to a crash and could be used to read sensitive information.
References
- https://access.redhat.com/security/cve/CVE-2023-4156 x_refsource_REDHAT vdb-entry
- RHBZ#2215930 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-4156 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2215930 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-4156 x_refsource_REDHAT vdb-entry
- RHBZ#2215930 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-4156 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2215930 issue-tracking x_refsource_REDHAT x_transferred
Affected products
- ==5.1.1
Matching in nixpkgs
pkgs.gawk
GNU implementation of the Awk programming language
-
nixos-unstable -
- nixpkgs-unstable 5.3.2
pkgs.gawkextlib.gd
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkextlib.csv
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkextlib.mbs
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkextlib.xml
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkInteractive
GNU implementation of the Awk programming language
-
nixos-unstable -
- nixpkgs-unstable 5.3.2
pkgs.gawkextlib.haru
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkextlib.json
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkextlib.lmdb
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkextlib.mpfr
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkextlib.abort
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkextlib.errno
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkextlib.pgsql
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkextlib.redis
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkextlib.timex
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkextlib.aregex
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkextlib.select
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawk-with-extensions
None
pkgs.gawkextlib.gawkextlib
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
pkgs.gawkextlib.nl_langinfo
Dynamically loaded extension libraries for GNU AWK
-
nixos-unstable -
- nixpkgs-unstable 2022-10-20
Package maintainers
-
@Conni2461 Simon Hauser <simon-hauser@outlook.com>
-
@dasJ Janne Heß <janne@hess.ooo>
-
@helsinki-Jo Joachim Ernst <joachim.ernst@helsinki-systems.de>
-
@tomberek Thomas Bereknyei <tomberek@gmail.com>