CVE-2022-27239
published 2022-04-27CVE-2022-27239: In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.
Affected
51 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | cifs-utils | < cifs-utils 2:6.14-1.1 (bookworm) | cifs-utils 2:6.14-1.1 (bookworm) |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| hp | helion_openstack | — | — |
| msrc | cbl2_cifs-utils_6.14-2_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_1.0_arm | — | — |
| msrc | cbl_mariner_1.0_x64 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| msrc | cm1_cifs-utils_6.8-6_on_cbl_mariner_1.0 | — | — |
| samba | cifs-utils | < 6.15 | 6.15 |
| samba | cifs-utils | >= 0 < 2:6.11-3.1+deb11u1 | 2:6.11-3.1+deb11u1 |
| samba | cifs-utils | >= 0 < 2:6.14-1.1 | 2:6.14-1.1 |
| samba | cifs-utils | >= 0 < 2:6.14-1.1 | 2:6.14-1.1 |
| samba | cifs-utils | >= 0 < 2:6.14-1.1 | 2:6.14-1.1 |
| samba | cifs-utils | >= 0 < 2:6.8-1ubuntu1.2 | 2:6.8-1ubuntu1.2 |
| samba | cifs-utils | >= 0 < 2:6.9-1ubuntu0.2 | 2:6.9-1ubuntu0.2 |
| samba | cifs-utils | >= 0 < 2:6.14-1ubuntu0.1 | 2:6.14-1ubuntu0.1 |
| samba | cifs-utils | >= 0 < 2:6.0-1ubuntu2+esm1 | 2:6.0-1ubuntu2+esm1 |
| samba | cifs-utils | >= 0 < 2:6.4-1ubuntu1.1+esm1 | 2:6.4-1ubuntu1.1+esm1 |
| suse | caas_platform | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH