CVE-2022-3437
published 2023-01-12CVE-2022-3437: A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal. The DES and Triple-DES…
medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc() allocated memory when presented with a maliciously small packet. This flaw allows a remote user to send specially crafted malicious data to the application, possibly resulting in a denial of service (DoS) attack.
Affected
44 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | macos_ventura | — | — |
| debian | heimdal | < heimdal 7.8.git20221115.a6cf945+dfsg-1 (bookworm) | heimdal 7.8.git20221115.a6cf945+dfsg-1 (bookworm) |
| debian | heimdal | < heimdal 7.8.git20221117.28daf24+dfsg-1.1 (bookworm) | heimdal 7.8.git20221117.28daf24+dfsg-1.1 (bookworm) |
| debian | samba | < heimdal 7.8.git20221115.a6cf945+dfsg-1 (bookworm) | heimdal 7.8.git20221115.a6cf945+dfsg-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| heimdal_project | heimdal | — | — |
| heimdal_project | heimdal | — | — |
| heimdal_project | heimdal | >= 0 < 7.7.0+dfsg-2+deb11u2 | 7.7.0+dfsg-2+deb11u2 |
| heimdal_project | heimdal | >= 0 < 7.7.0+dfsg-2+deb11u3 | 7.7.0+dfsg-2+deb11u3 |
| heimdal_project | heimdal | >= 0 < 7.8.git20221115.a6cf945+dfsg-1 | 7.8.git20221115.a6cf945+dfsg-1 |
| heimdal_project | heimdal | >= 0 < 7.8.git20221117.28daf24+dfsg-1.1 | 7.8.git20221117.28daf24+dfsg-1.1 |
| heimdal_project | heimdal | >= 0 < 7.8.git20221115.a6cf945+dfsg-1 | 7.8.git20221115.a6cf945+dfsg-1 |
| heimdal_project | heimdal | >= 0 < 7.8.git20221117.28daf24+dfsg-1.1 | 7.8.git20221117.28daf24+dfsg-1.1 |
| heimdal_project | heimdal | >= 0 < 7.8.git20221115.a6cf945+dfsg-1 | 7.8.git20221115.a6cf945+dfsg-1 |
| heimdal_project | heimdal | >= 0 < 7.8.git20221117.28daf24+dfsg-1.1 | 7.8.git20221117.28daf24+dfsg-1.1 |
| heimdal_project | heimdal | >= 0 < 7.5.0+dfsg-1ubuntu0.3 | 7.5.0+dfsg-1ubuntu0.3 |
| heimdal_project | heimdal | >= 0 < 7.7.0+dfsg-1ubuntu1.3 | 7.7.0+dfsg-1ubuntu1.3 |
| heimdal_project | heimdal | >= 0 < 1.6~git20131207+dfsg-1ubuntu1.2+esm3 | 1.6~git20131207+dfsg-1ubuntu1.2+esm3 |
| heimdal_project | heimdal | >= 0 < 1.7~git20150920+dfsg-4ubuntu1.16.04.1+esm3 | 1.7~git20150920+dfsg-4ubuntu1.16.04.1+esm3 |
| msrc | azl3_heimdal_7.8.0-3_on_azure_linux_3.0 | — | — |
| msrc | azl3_samba_4.18.3-1_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl2_heimdal_7.7.1-2_on_cbl_mariner_2.0 | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
osv7.5HIGH