Unrated severityNVD Advisory· Published Jun 1, 2023· Updated Jan 9, 2025
CVE-2023-33461
CVE-2023-33461
Description
iniparser v4.1 is vulnerable to NULL Pointer Dereference in function iniparser_getlongint which misses check NULL for function iniparser_getstring's return.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9- osv-coords7 versionspkg:rpm/opensuse/iniparser&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/iniparser&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/iniparser&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP5pkg:rpm/suse/iniparser&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/iniparser&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/iniparser&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/iniparser&distro=SUSE%20Package%20Hub%2015%20SP4
< 4.1-bp154.2.3.1+ 6 more
- (no CPE)range: < 4.1-bp154.2.3.1
- (no CPE)range: < 4.1-150500.4.3.1
- (no CPE)range: < 4.1-150500.4.3.1
- (no CPE)range: < 3.1.0.git20140619_c5beb80a-3.3.1
- (no CPE)range: < 3.1.0.git20140619_c5beb80a-3.3.1
- (no CPE)range: < 3.1.0.git20140619_c5beb80a-3.3.1
- (no CPE)range: < 4.1-bp154.2.3.1
Patches
Vulnerability mechanics
References
3- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ASV7SEDHGCP63GYAFEW3CTTVQDZM5RIK/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BQAIP5AURSTWIQOOP7G4CXYJ5IIGPY3Q/mitrevendor-advisory
- github.com/ndevilla/iniparser/issues/144mitre
News mentions
0No linked articles in our index yet.