Описание
Security update for cifs-utils
This update for cifs-utils fixes the following issues:
- CVE-2022-27239: Fixed a buffer overflow in the command line ip option (bsc#1197216).
Список пакетов
HPE Helion OpenStack 8
cifs-utils-6.9-9.18.1
SUSE Linux Enterprise Server 12 SP2-BCL
cifs-utils-6.9-9.18.1
SUSE Linux Enterprise Server 12 SP3-BCL
cifs-utils-6.9-9.18.1
SUSE Linux Enterprise Server 12 SP3-LTSS
cifs-utils-6.9-9.18.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3
cifs-utils-6.9-9.18.1
SUSE OpenStack Cloud 8
cifs-utils-6.9-9.18.1
SUSE OpenStack Cloud Crowbar 8
cifs-utils-6.9-9.18.1
Ссылки
- Link for SUSE-SU-2022:1428-1
- E-Mail link for SUSE-SU-2022:1428-1
- SUSE Security Ratings
- SUSE Bug 1197216
- SUSE CVE CVE-2022-27239 page
Описание
In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.
Затронутые продукты
HPE Helion OpenStack 8:cifs-utils-6.9-9.18.1
SUSE Linux Enterprise Server 12 SP2-BCL:cifs-utils-6.9-9.18.1
SUSE Linux Enterprise Server 12 SP3-BCL:cifs-utils-6.9-9.18.1
SUSE Linux Enterprise Server 12 SP3-LTSS:cifs-utils-6.9-9.18.1
Ссылки
- CVE-2022-27239
- SUSE Bug 1197216