logo

Database

Improper resource allocation In simple-wayland-hotkey-daemon

Description

Unsafe parsing in SWHKD SWHKD 1.1.5 allows unsafe parsing via the -c option. An information leak might occur but there is a simple denial of service (memory exhaustion) upon an attempt to parse a large or infinite file (such as a block or character device).

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2022-278192. NVD-2022-278193. OSV-2022-278194. GCVE-2022-27819

References

1. https://github.com/waycrate/swhkd/commit/b4e6dc76f4845ab03104187a42ac6d1bbc1e00212. https://github.com/waycrate/swhkd/releases3. https://github.com/waycrate/swhkd/releases/tag/1.2.04. http://www.openwall.com/lists/oss-security/2022/04/14/1

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.

FLAT-11AMA – Vulnerability | Fluid Attacks Database