CVE-2022-0699

Published: Oct 17, 2022

Modified: Jan 24, 2026

PUBLISHED

Description

A double-free condition exists in contrib/shpsort.c of shapelib 1.5.0 and older releases. This issue may allow an attacker to cause a denial of service or have other unspecified impact via control over malloc.

Vendor	Product	Versions
n/a	shapelib	affected `shapelib 1.5.0 and older releases`

Weaknesses (CWE)

CWE-416

References

https://github.com/OSGeo/shapelib/issues/39

https://github.com/OSGeo/shapelib/commit/c75b9281a5b9452d92e1682bdfe6019a13ed819f

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-0699

Description

Affected Products

Weaknesses (CWE)

References