参照: Official alpine advisory, NVD, CVE.org · CVE 詳細
Freshness: no update timestamp found; verify against the upstream OS advisory manually.
CVE-2022-40468: 1 source package rows (tinyproxy); 19 state rows across 8 repos (3.17-main, 3.18-main, 3.19-main, 3.20-main, 3.21-main, 3.22-main, 3.23-main, edge-main); fixed 19, open 0.
Potential leak of left-over heap data if custom error page templates containing special non-standard variables are used. Tinyproxy commit 84f203f and earlier use uninitialized buffers in process_request() function.