First published: Mon Oct 24 2022(Updated: )
A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc() allocated memory when presented with a maliciously small packet. This flaw allows a remote user to send specially crafted malicious data to the application, possibly resulting in a denial of service (DoS) attack.
Credit: Evgeny Legerov Intevydis secalert@redhat.com secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple macOS Ventura | <13 | 13 |
Samba Samba | >=4.0.0<4.15.11 | |
Samba Samba | >=4.16.0<4.16.6 | |
Samba Samba | >=4.17.0<4.17.2 | |
Fedoraproject Fedora | =36 | |
Fedoraproject Fedora | =37 | |
redhat/samba | <4.15.11 | 4.15.11 |
redhat/samba | <4.16.6 | 4.16.6 |
redhat/samba | <4.17.2 | 4.17.2 |
debian/heimdal | <=7.5.0+dfsg-3 | 7.5.0+dfsg-3+deb10u2 7.7.0+dfsg-2+deb11u3 7.8.git20221117.28daf24+dfsg-2 7.8.git20221117.28daf24+dfsg-3 |
debian/samba | <=2:4.9.5+dfsg-5+deb10u3<=2:4.9.5+dfsg-5+deb10u4<=2:4.13.13+dfsg-1~deb11u5 | 2:4.17.12+dfsg-0+deb12u1 2:4.19.3+dfsg-2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The vulnerability ID for this issue is CVE-2022-3437.
The affected software includes Apple macOS Ventura, Samba, and Fedora.
The severity of CVE-2022-3437 is medium.
The vulnerability manifests as a heap-based buffer overflow in the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal.
Yes, remediation for this vulnerability is available through updates and patches provided by the respective vendors.