CVE-2022-44940 (https://github.com/NixOS/patchelf/pull/419): Patchelf v0.9 was discovered to contain an out-of-bounds read via the function modifyRPath at src/patchelf.cc. Patch in 0.16.0 onwards: https://github.com/NixOS/patchelf/commit/b751eeb137d71765b3c35c4210c1c3b64dcd3a32 Please stabilize >=0.16.0.
0.17.0 has been stabilised and the old versions have been cleaned.
OOB read with no apparent further impact. No GLSA, all done.