{"id":"CVE-2022-2881","details":"The underlying bug might cause read past end of the buffer and either read memory it should not read, or crash the process.","modified":"2026-04-12T05:04:22.293424Z","published":"2022-09-21T11:15:09.563Z","related":["CGA-v9w8-p6x3-67w5","openSUSE-SU-2024:12356-1"],"references":[{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/202210-25"},{"type":"FIX","url":"http://www.openwall.com/lists/oss-security/2022/09/21/3"},{"type":"FIX","url":"https://kb.isc.org/docs/cve-2022-2881"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://gitlab.isc.org/isc-projects/bind9","events":[{"introduced":"8db45afa1affcb823e68afdeddedf93e136f5d3e"},{"fixed":"85a6eb108e884467c4b3af414140d6b033a89a62"},{"introduced":"cab15392afd841fe3b0bacd894003376d857459a"},{"fixed":"5b2fed25f4f7d2c08b38c4d94193715cdbb2e038"}],"database_specific":{"cpe":"cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*","extracted_events":[{"introduced":"9.18.0"},{"fixed":"9.18.7"},{"introduced":"9.19.0"},{"fixed":"9.19.5"}],"source":"CPE_FIELD"}}],"versions":["v9.18.0","v9.19.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-2881.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H"}]}