Описание
Security update for netatalk
This update for netatalk fixes the following issues:
- CVE-2022-22995: Fixed a flaw where combining primitives offered by SMB and AFP in their default configuration may allow an attacker to achieve arbitrary code execution. (bsc#1197576)
Список пакетов
SUSE Linux Enterprise Software Development Kit 12 SP5
libatalk12-3.1.0-3.22.1
netatalk-3.1.0-3.22.1
netatalk-devel-3.1.0-3.22.1
SUSE Linux Enterprise Workstation Extension 12 SP5
libatalk12-3.1.0-3.22.1
netatalk-3.1.0-3.22.1
Ссылки
- Link for SUSE-SU-2023:4084-1
- E-Mail link for SUSE-SU-2023:4084-1
- SUSE Security Ratings
- SUSE Bug 1197576
- SUSE CVE CVE-2022-22995 page
Описание
The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files. By exploiting these combination of primitives, an attacker can execute arbitrary code.
Затронутые продукты
SUSE Linux Enterprise Software Development Kit 12 SP5:libatalk12-3.1.0-3.22.1
SUSE Linux Enterprise Software Development Kit 12 SP5:netatalk-3.1.0-3.22.1
SUSE Linux Enterprise Software Development Kit 12 SP5:netatalk-devel-3.1.0-3.22.1
SUSE Linux Enterprise Workstation Extension 12 SP5:libatalk12-3.1.0-3.22.1
Ссылки
- CVE-2022-22995
- SUSE Bug 1197576