Approved changes feed: RSS · Atom

cpe:2.3:a:osgeo:shapelib:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorOsgeo (706646bf-cac0-5b16-9ff6-83d28fd0444b)
ProductShapelib (661b86eb-7a0a-5b8f-847f-1a63cc58c273)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:bitbucket/overwatchimaging/shapelib purl2cpe 2026-06-01 10:12:15.942148
pkg:deb/debian/shapelib purl2cpe 2026-06-01 10:12:15.942150
pkg:deb/ubuntu/shapelib purl2cpe 2026-06-01 10:12:15.942158
pkg:github/osgeo/shapelib purl2cpe 2026-06-01 10:12:15.942160
pkg:rpm/fedora/shapelib purl2cpe 2026-06-01 10:12:15.942161
pkg:rpm/opensuse/shapelib purl2cpe 2026-06-01 10:12:15.942162

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2022-0699 vulnerable 2026-06-08 05:39:10.558806 Details available
A double-free condition exists in contrib/shpsort.c of shapelib 1.5.0 and older releases. This issue may allow an attacker to cause a denial of service or have other unspecified impact via control over malloc.
Published: 2022-10-17T00:00:00.000Z
Updated: 2026-01-24T21:03:54.738Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.