Wiz
Vulnerability DatabaseCVE-2022-37781

CVE-2022-37781
NixOS vulnerability analysis and mitigation

Overview

fdkaac v1.0.3 was discovered to contain a heap buffer overflow vulnerability via __interceptor_memcpy.part.46 at /sanitizer_common/sanitizer_common_interceptors.inc. The vulnerability was identified and disclosed on August 16, 2022 (Debian Tracker, GitHub Issue).

Technical details

The vulnerability manifests as a heap buffer overflow condition that occurs during memory operations. The issue specifically involves the __interceptor_memcpy.part.46 function, which performs an invalid read of size 4 at a memory location outside the allocated buffer region. The vulnerability was discovered through Address Sanitizer testing, which detected a READ operation of size 4 occurring at an address beyond the bounds of an 8192-byte allocated region (GitHub Issue).

Impact

The heap buffer overflow vulnerability could potentially lead to memory corruption and application crashes. When exploited, the vulnerability triggers an AddressSanitizer error, indicating unauthorized memory access that could affect system stability (GitHub Issue).

Mitigation and workarounds

The issue was reported in version 1.0.3 of fdkaac. While no official patch has been explicitly mentioned in the available sources, users are advised to exercise caution when processing untrusted input files (Debian Tracker).

Additional resources

SourceThis report was generated using AI

Related NixOS vulnerabilities:

CVE ID

Severity

Score

Technologies

Component name

CISA KEV exploit

Has fix

Published date

CVE-2026-22783HIGH8.1
  • NixOSNixOS
  • iris
NoYesJan 12, 2026
CVE-2026-0821MEDIUM6.9
  • NixOSNixOS
  • quickjs
NoNoJan 10, 2026
CVE-2025-68949MEDIUM5.3
  • NixOSNixOS
  • n8n
NoYesJan 13, 2026
CVE-2026-22784LOW2.3
  • NixOSNixOS
  • lychee
NoYesJan 12, 2026
CVE-2026-23497LOW1.3
  • NixOSNixOS
  • learning
NoYesJan 14, 2026

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

Cloud Threat Landscape

A threat intelligence database

PEACH

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo