exploitDog

CVE-2022-1615

Опубликовано: 01 сент. 2022

Источник: debian

Описание

In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
samba	fixed	2:4.17.0+dfsg-1	experimental	package
samba	fixed	2:4.16.5+dfsg-2		package
samba	ignored		bullseye	package
samba	not-affected		buster	package

Примечания

https://bugzilla.samba.org/show_bug.cgi?id=15103
https://gitlab.com/samba-team/samba/-/merge_requests/2644
Introduced by: https://gitlab.com/samba-team/samba/-/commit/664eed2e926f8f572b81e6d7c8e09b7ccbafb908 (samba-4.12.0)
Fixed by: https://gitlab.com/samba-team/samba/-/commit/9849e7440e30853c61a80ce1f11b7b244ed766fe (samba-4.17.0rc1)

Связанные уязвимости

CVE-2022-1615

CVSS3: 5.5

ubuntu

около 3 лет назад

In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.

CVE-2022-1615

CVSS3: 5.1

redhat

около 3 лет назад

In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.

CVE-2022-1615

CVSS3: 5.5

nvd

около 3 лет назад

In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.

SUSE-SU-2022:3270-1

suse-cvrf

почти 3 года назад

Security update for samba

GHSA-hhph-6qvj-8859

CVSS3: 5.5

github

около 3 лет назад

In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.