Moderate severityNVD Advisory· Published Feb 25, 2022· Updated Aug 3, 2024
CVE-2022-24329
CVE-2022-24329
Description
In JetBrains Kotlin before 1.6.0, it was not possible to lock dependencies for Multiplatform Gradle Projects.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.jetbrains.kotlin:kotlin-stdlibMaven | < 1.6.0 | 1.6.0 |
Affected products
12- JetBrains/Kotlindescription
- osv-coords11 versionspkg:apk/chainguard/thingsboardpkg:apk/chainguard/thingsboard-tb-js-executorpkg:apk/chainguard/thingsboard-tb-mqtt-transportpkg:apk/chainguard/thingsboard-tb-nodepkg:apk/chainguard/thingsboard-tb-web-uipkg:apk/wolfi/thingsboardpkg:apk/wolfi/thingsboard-tb-js-executorpkg:apk/wolfi/thingsboard-tb-mqtt-transportpkg:apk/wolfi/thingsboard-tb-nodepkg:apk/wolfi/thingsboard-tb-web-uipkg:maven/org.jetbrains.kotlin/kotlin-stdlib
< 3.7-r1+ 10 more
- (no CPE)range: < 3.7-r1
- (no CPE)range: < 3.7-r1
- (no CPE)range: < 3.7-r1
- (no CPE)range: < 3.7-r1
- (no CPE)range: < 3.7-r1
- (no CPE)range: < 3.7-r1
- (no CPE)range: < 3.7-r1
- (no CPE)range: < 3.7-r1
- (no CPE)range: < 3.7-r1
- (no CPE)range: < 3.7-r1
- (no CPE)range: < 1.6.0
Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-2qp4-g3q3-f92wghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-24329ghsaADVISORY
- blog.jetbrains.comghsax_refsource_MISCWEB
- blog.jetbrains.com/blog/2022/02/08/jetbrains-security-bulletin-q4-2021ghsaWEB
- blog.jetbrains.com/blog/2022/02/08/jetbrains-security-bulletin-q4-2021/mitrex_refsource_MISC
- www.oracle.com/security-alerts/cpuapr2022.htmlghsax_refsource_MISCWEB
- www.oracle.com/security-alerts/cpujul2022.htmlghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.