Unrated severityNVD Advisory· Published Sep 19, 2022· Updated Nov 4, 2025
CVE-2022-40468
CVE-2022-40468
Description
Potential leak of left-over heap data if custom error page templates containing special non-standard variables are used. Tinyproxy commit 84f203f and earlier use uninitialized buffers in process_request() function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- osv-coords3 versionspkg:rpm/opensuse/tinyproxy&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/tinyproxy&distro=openSUSE%20Tumbleweedpkg:rpm/suse/tinyproxy&distro=SUSE%20Package%20Hub%2015%20SP5
< 1.11.2-bp155.3.3.1+ 2 more
- (no CPE)range: < 1.11.2-bp155.3.3.1
- (no CPE)range: < 1.11.1-2.1
- (no CPE)range: < 1.11.2-bp155.3.3.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.