{"containers": {"cna": {"affected": [{"product": "fapolicyd", "vendor": "n/a", "versions": [{"status": "affected", "version": "Fixed in v1.1.2"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability was found in fapolicyd. The vulnerability occurs due to an assumption on how glibc names the runtime linker, a build time regular expression may not correctly detect the runtime linker. The consequence is that the pattern detection for applications launched by the run time linker may fail to detect the pattern and allow execution."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-552", "description": "CWE-552 - Files or Directories Accessible to External Parties.", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2022-08-29T14:03:07", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2068171"}, {"tags": ["x_refsource_MISC"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066904"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/linux-application-whitelisting/fapolicyd/commit/38a942613f93824c53164730b2b7a2f75b8cd263"}, {"tags": ["x_refsource_MISC"], "url": "https://access.redhat.com/security/cve/CVE-2022-1117"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T23:55:23.436Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2068171"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066904"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/linux-application-whitelisting/fapolicyd/commit/38a942613f93824c53164730b2b7a2f75b8cd263"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://access.redhat.com/security/cve/CVE-2022-1117"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2022-1117", "datePublished": "2022-08-29T14:03:07", "dateReserved": "2022-03-28T00:00:00", "dateUpdated": "2024-08-02T23:55:23.436Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:fapolicyd_project:fapolicyd:*:*:*:*:*:*:*:*", "matchCriteriaId": "77ED18CE-3E85-47C5-B5D3-9F2A846C75E5", "versionEndExcluding": "1.1.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability was found in fapolicyd. The vulnerability occurs due to an assumption on how glibc names the runtime linker, a build time regular expression may not correctly detect the runtime linker. The consequence is that the pattern detection for applications launched by the run time linker may fail to detect the pattern and allow execution."}, {"lang": "es", "value": "Se ha encontrado una vulnerabilidad en fapolicyd. La vulnerabilidad se produce debido a una suposici\u00f3n sobre c\u00f3mo glibc nombra al enlazador en tiempo de ejecuci\u00f3n, una expresi\u00f3n regular en tiempo de compilaci\u00f3n puede no detectar correctamente el enlazador en tiempo de ejecuci\u00f3n. La consecuencia es que la detecci\u00f3n de patrones para las aplicaciones lanzadas por el enlazador en tiempo de ejecuci\u00f3n puede fallar al detectar el patr\u00f3n y permitir la ejecuci\u00f3n"}], "id": "CVE-2022-1117", "lastModified": "2023-02-12T22:15:23.080", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-08-29T15:15:10.357", "references": [{"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/security/cve/CVE-2022-1117"}, {"source": "secalert@redhat.com", "tags": ["Permissions Required", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066904"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2068171"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/linux-application-whitelisting/fapolicyd/commit/38a942613f93824c53164730b2b7a2f75b8cd263"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-552"}], "source": "secalert@redhat.com", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-552"}], "source": "nvd@nist.gov", "type": "Secondary"}]}

{"acknowledgement": "Red Hat would like to thank Jeff Dileo <jeff.dileo@nccgroup.com> (NCC Group) and Jennifer Fernick <jennifer.fernick@nccgroup.com> (NCC Group) for reporting this issue.", "affected_release": [{"advisory": "RHSA-2022:1898", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "fapolicyd-0:1.1-6.el8", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2022-05-10T00:00:00Z"}, {"advisory": "RHSA-2022:4824", "cpe": "cpe:/a:redhat:rhel_eus:8.4", "package": "fapolicyd-0:1.0.2-6.el8_4.1", "product_name": "Red Hat Enterprise Linux 8.4 Extended Update Support", "release_date": "2022-05-31T00:00:00Z"}], "bugzilla": {"description": "fapolicyd: fapolicyd wrongly prepares ld.so path", "id": "2068171", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2068171"}, "csaw": false, "cvss3": {"cvss3_base_score": "8.4", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "status": "verified"}, "cwe": "CWE-552", "details": ["A vulnerability was found in fapolicyd. The vulnerability occurs due to an assumption on how glibc names the runtime linker, a build time regular expression may not correctly detect the runtime linker. The consequence is that the pattern detection for applications launched by the run time linker may fail to detect the pattern and allow execution.", "A vulnerability was found in fapolicyd. The vulnerability occurs due to an assumption on how glibc names the runtime linker, a build time regular expression may not correctly detect the runtime linker. The consequence is that the pattern detection for applications launched by the run time linker may fail to detect the pattern and allow execution."], "name": "CVE-2022-1117", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "fapolicyd", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2022-05-02T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2022-1117\nhttps://nvd.nist.gov/vuln/detail/CVE-2022-1117"], "threat_severity": "Moderate"}