CVE-2022-23218
published 2022-01-14CVE-2022-23218: The deprecated compatibility function svcunix_create in the sunrpc module of the GNU C Library (aka glibc) through 2.34 copies its path argument on the stack…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
The deprecated compatibility function svcunix_create in the sunrpc module of the GNU C Library (aka glibc) through 2.34 copies its path argument on the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or (if an application is not built with a stack protector enabled) arbitrary code execution.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | glibc | < glibc 2.33-3 (bookworm) | glibc 2.33-3 (bookworm) |
| gnu | glibc | < 2.31 | 2.31 |
| gnu | glibc | >= 0 < 2.31-13+deb11u3 | 2.31-13+deb11u3 |
| gnu | glibc | >= 0 < 2.33-3 | 2.33-3 |
| gnu | glibc | >= 0 < 2.33-3 | 2.33-3 |
| gnu | glibc | >= 0 < 2.33-3 | 2.33-3 |
| gnu | glibc | >= 0 < 2.27-3ubuntu1.5 | 2.27-3ubuntu1.5 |
| gnu | glibc | >= 0 < 2.31-0ubuntu9.7 | 2.31-0ubuntu9.7 |
| gnu | glibc | >= 0 < 2.23-0ubuntu11.3+esm1 | 2.23-0ubuntu11.3+esm1 |
| msrc | cbl2_glibc_2.35-1_on_cbl_mariner_2.0 | — | — |
| oracle | communications_cloud_native_core_unified_data_repository | — | — |
| oracle | enterprise_operations_monitor | — | — |
| oracle | enterprise_operations_monitor | — | — |
| oracle | enterprise_operations_monitor | — | — |
| paloalto | pan-os | — | — |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv9.8CRITICAL