CVE-2022-2274

Summary

Heap memory corruption with RSA private key operation

Severity

medium

EPSS

36.5% (p98)

Also known as

GHSA-735f-pg76-fxc4, RUSTSEC-2022-0033

Published

2022-07-05

References

• https://crates.io/crates/openssl-src
• https://rustsec.org/advisories/RUSTSEC-2022-0033.html
• https://www.openssl.org/news/secadv/20220705.txt

Related advisories

• CVE-2022-4203 — critical · crates.io/openssl-src
• CVE-2022-3602 — critical · crates.io/openssl-src
• CVE-2021-3711 — critical · crates.io/openssl-src
• CVE-2023-0215 — high · crates.io/openssl-src
• CVE-2023-0216 — high · crates.io/openssl-src
• CVE-2022-4450 — high · crates.io/openssl-src
• CVE-2023-0217 — high · crates.io/openssl-src
• CVE-2023-0401 — high · crates.io/openssl-src

Is your project exposed to this? Stateward checks every dependency on every pull request and flags it only if your code actually reaches it.

Summarize with AI

ChatGPTClaudePerplexity