CVE-2022-32746

Опубликовано: 27 июл. 2022

Источник: redhat

CVSS3: 5.4

Описание

A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module, resulting in a use-after-free issue. This issue is only possible when modifying certain privileged attributes, such as userAccountControl.

Отчет

Although versions of Samba shipped with Red Hat Enterprise Linux do not support Samba in AD mode, the affected code is shipped in RHEL with the libldb package.

Меры по смягчению последствий

Disabling the AD DC database audit logging prevents the use-after-free from occurring, as that is the only component that will access the original message.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	libldb	Out of support scope
Red Hat Enterprise Linux 6	samba	Not affected
Red Hat Enterprise Linux 6	samba4	Not affected
Red Hat Enterprise Linux 7	libldb	Out of support scope
Red Hat Enterprise Linux 7	samba	Not affected
Red Hat Enterprise Linux 8	samba	Not affected
Red Hat Enterprise Linux 9	samba	Not affected
Red Hat Storage 3	libldb	Affected
Red Hat Storage 3	samba	Not affected
Red Hat Enterprise Linux 8	libldb	Fixed	RHSA-2022:7730	08.11.2022

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-416

https://bugzilla.redhat.com/show_bug.cgi?id=2108215samba: AD users can induce a use-after-free in the server process with an LDAP add or modify request

5.4 Medium

CVSS3