CVE-2022-1615

Опубликовано: 01 сент. 2022

Источник: debian

EPSS Низкий

Описание

In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.

Пакет	Статус	Версия исправления	Релиз	Тип
samba	fixed	2:4.17.0+dfsg-1	experimental	package
samba	fixed	2:4.16.5+dfsg-2		package
samba	ignored		bullseye	package
samba	not-affected		buster	package

https://bugzilla.samba.org/show_bug.cgi?id=15103
https://gitlab.com/samba-team/samba/-/merge_requests/2644
Introduced by: https://gitlab.com/samba-team/samba/-/commit/664eed2e926f8f572b81e6d7c8e09b7ccbafb908 (samba-4.12.0)
Fixed by: https://gitlab.com/samba-team/samba/-/commit/9849e7440e30853c61a80ce1f11b7b244ed766fe (samba-4.17.0rc1)

EPSS

Процентиль: 35%

0.0014

Низкий

CVE-2022-1615

CVSS3: 5.5

ubuntu

около 3 лет назад

In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.

CVE-2022-1615

CVSS3: 5.1

redhat

больше 3 лет назад

In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.

CVE-2022-1615

CVSS3: 5.5

nvd

около 3 лет назад

In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.

CVE-2022-1615

CVSS3: 5.5

msrc

2 месяца назад

In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.

SUSE-SU-2022:3270-1

suse-cvrf

около 3 лет назад

Security update for samba

EPSS

Процентиль: 35%

0.0014

Низкий