Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS0ycXA0LWczcTMtZjkyd80u-Q
Improper Locking in JetBrains Kotlin
In JetBrains Kotlin before 1.6.0, it was not possible to lock dependencies for Multiplatform Gradle Projects.
Permalink: https://github.com/advisories/GHSA-2qp4-g3q3-f92wJSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS0ycXA0LWczcTMtZjkyd80u-Q
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Moderate
Classification: General
Published: about 2 years ago
Updated: over 1 year ago
CVSS Score: 5.3
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Identifiers: GHSA-2qp4-g3q3-f92w, CVE-2022-24329
References:
- https://nvd.nist.gov/vuln/detail/CVE-2022-24329
- https://blog.jetbrains.com/blog/2022/02/08/jetbrains-security-bulletin-q4-2021/
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://blog.jetbrains.com
- https://www.oracle.com/security-alerts/cpujul2022.html
- https://github.com/advisories/GHSA-2qp4-g3q3-f92w
Affected Packages
maven:org.jetbrains.kotlin:kotlin-stdlib
Dependent packages: 11,122Dependent repositories: 78,932
Downloads:
Affected Version Ranges: <= 1.5.32
Fixed in: 1.6.0
All affected versions: 0.5.998, 0.5.1131, 0.6.22, 0.6.31, 0.6.69, 0.6.179, 0.6.317, 0.6.350, 0.6.594, 0.6.602, 0.6.786, 0.6.800, 0.6.912, 0.6.1070, 0.6.1315, 0.6.1411, 0.6.1507, 0.6.1590, 0.6.1603, 0.6.1617, 0.6.1658, 0.6.1670, 0.6.1673, 0.6.1910, 0.6.2451, 0.6.2517, 0.7.5, 0.7.86, 0.7.115, 0.7.191, 0.7.258, 0.7.270, 0.7.271, 0.7.802, 0.7.852, 0.7.895, 0.7.1090, 0.7.1217, 0.8.11, 0.8.484, 0.8.679, 0.8.1527, 0.9.66, 0.9.206, 0.9.976, 0.10.4, 0.10.195, 0.10.709, 0.10.770, 0.10.1316, 0.11.91, 0.12.200, 0.12.213, 0.12.412, 0.12.1218, 0.12.1230, 0.13.1513, 0.13.1514, 0.13.1516, 0.14.449, 0.14.451, 1.0.0, 1.0.1, 1.0.2, 1.0.3, 1.0.4, 1.0.5, 1.0.6, 1.0.7, 1.1.0, 1.1.1, 1.1.2, 1.1.3, 1.1.4, 1.1.50, 1.1.51, 1.1.60, 1.1.61, 1.2.0, 1.2.10, 1.2.20, 1.2.21, 1.2.30, 1.2.31, 1.2.40, 1.2.41, 1.2.50, 1.2.51, 1.2.60, 1.2.61, 1.2.70, 1.2.71, 1.3.0, 1.3.10, 1.3.11, 1.3.20, 1.3.21, 1.3.30, 1.3.31, 1.3.40, 1.3.41, 1.3.50, 1.3.60, 1.3.61, 1.3.70, 1.3.71, 1.3.72, 1.4.0, 1.4.10, 1.4.20, 1.4.21, 1.4.30, 1.4.31, 1.4.32, 1.5.0, 1.5.10, 1.5.20, 1.5.21, 1.5.30, 1.5.31, 1.5.32
All unaffected versions: 1.6.0, 1.6.10, 1.6.20, 1.6.21, 1.7.0, 1.7.10, 1.7.20, 1.7.21, 1.7.22, 1.8.0, 1.8.10, 1.8.20, 1.8.21, 1.8.22, 1.9.0, 1.9.10, 1.9.20, 1.9.21, 1.9.22, 1.9.23, 1.9.24