ubuntu · CVE-2022-46292

Quick triage

Priority: medium 公開： 2023-07-21 21:15:00 UTC Updated: 2025-07-11 07:53:31 UTC

参照： Official ubuntu advisory, NVD, CVE.org · CVE 詳細

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2022-46292 medium priority: Ubuntu including 1 source packages (openbabel), 12 status rows across 12 suites (bionic, focal, jammy, lunar, mantic, noble, oracular, plucky, questing, trusty, upstream, xenial): ignored 5, needs-triage 4, needed 3.

Description:

Multiple out-of-bounds write vulnerabilities exist in the translationVectors parsing functionality in multiple supported formats of Open Babel 3.1.1 and master commit 530dbfa3. A specially-crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability affects the MOPAC file format, inside the Unit Cell Translation section

cvelogic Threat Intelligence