csaf_certbund - wid-sec-w-2022-1847

WID-SEC-W-2022-1847

Vulnerability from csaf_certbund - Published: 2022-10-24 22:00 - Updated: 2025-06-19 22:00

Summary

Samba: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Samba ist eine Open Source Software Suite, die Druck- und Dateidienste für SMB/CIFS Clients implementiert.

Angriff

Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Samba ausnutzen, um einen nicht näher spezifizierten Angriff durchzuführen oder Sicherheitsvorkehrungen zu umgehen.

Betroffene Betriebssysteme

- Linux - MacOS X - UNIX - Windows

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Samba ist eine Open Source Software Suite, die Druck- und Dateidienste f\u00fcr SMB/CIFS Clients implementiert.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Samba ausnutzen, um einen nicht n\u00e4her spezifizierten Angriff durchzuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- MacOS X\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-1847 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1847.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-1847 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1847"
      },
      {
        "category": "external",
        "summary": "Samba Security Advisory vom 2022-10-24",
        "url": "https://www.samba.org/samba/security/CVE-2022-3437.html"
      },
      {
        "category": "external",
        "summary": "Samba Security Advisory vom 2022-10-24",
        "url": "https://www.samba.org/samba/security/CVE-2022-3592.html"
      },
      {
        "category": "external",
        "summary": "Samba Release Notes vom 2022-10-24",
        "url": "https://www.samba.org/samba/history/samba-4.15.11.html"
      },
      {
        "category": "external",
        "summary": "Samba Release Notes vom 2022-10-24",
        "url": "https://www.samba.org/samba/history/samba-4.16.6.html"
      },
      {
        "category": "external",
        "summary": "Samba Release Notes vom 2022-10-24",
        "url": "https://www.samba.org/samba/history/samba-4.17.2.html"
      },
      {
        "category": "external",
        "summary": "Synology Security Advisory SYNOLOGY-SA-22:20 vom 2022-10-27",
        "url": "https://www.synology.com/en-global/support/security/Synology_SA_22_20"
      },
      {
        "category": "external",
        "summary": "NetApp Security Advisory NTAP-20221028-0011 vom 2022-10-28",
        "url": "https://security.netapp.com/advisory/ntap-20221028-0011/"
      },
      {
        "category": "external",
        "summary": "FreeBSD Security Advisory FREEBSD-SA-22:14.HEIMDAL vom 2022-11-16",
        "url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-22:14.heimdal.asc"
      },
      {
        "category": "external",
        "summary": "Heimdal 7.7.1 - Security Fix Release",
        "url": "https://github.com/heimdal/heimdal/releases/tag/heimdal-7.7.1"
      },
      {
        "category": "external",
        "summary": "Heimdal 7.8 - Security Fix Release",
        "url": "https://github.com/heimdal/heimdal/releases/tag/heimdal-7.8.0"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5287 vom 2022-11-22",
        "url": "https://lists.debian.org/debian-security-announce/2022/msg00258.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3206 vom 2022-11-26",
        "url": "https://lists.debian.org/debian-lts-announce/2022/11/msg00034.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:4395-1 vom 2022-12-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-December/013212.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2023:0081-1 vom 2023-01-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2023-January/013465.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5800-1 vom 2023-01-12",
        "url": "https://ubuntu.com/security/notices/USN-5800-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5822-1 vom 2023-01-24",
        "url": "https://ubuntu.com/security/notices/USN-5822-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5822-2 vom 2023-01-27",
        "url": "https://ubuntu.com/security/notices/USN-5822-2"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2023:0160-1 vom 2023-01-26",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2023-January/013535.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5344 vom 2023-02-08",
        "url": "https://lists.debian.org/debian-security-announce/2023/msg00033.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3311 vom 2023-02-08",
        "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00005.html"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6960547 vom 2023-03-07",
        "url": "https://www.ibm.com/support/pages/node/6960547"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5936-1 vom 2023-03-08",
        "url": "https://ubuntu.com/security/notices/USN-5936-1"
      },
      {
        "category": "external",
        "summary": "QNAP Security Advisory QSA-23-02 vom 2023-03-29",
        "url": "https://www.qnap.com/de-de/security-advisory/QSA-23-02"
      },
      {
        "category": "external",
        "summary": "QNAP Security Advisory QSA-23-02 vom 2023-03-29",
        "url": "https://www.qnap.com/go/security-advisory/qsa-23-02"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202309-06 vom 2023-09-17",
        "url": "https://security.gentoo.org/glsa/202309-06"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5647 vom 2024-03-24",
        "url": "https://lists.debian.org/debian-security-announce/2024/msg00055.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3792 vom 2024-04-22",
        "url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00015.html"
      },
      {
        "category": "external",
        "summary": "HPE Security Bulletin vom 2024-10-25",
        "url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbux04724en_us\u0026docLocale=en_US"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7582-1 vom 2025-06-19",
        "url": "https://ubuntu.com/security/notices/USN-7582-1"
      }
    ],
    "source_lang": "en-US",
    "title": "Samba: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-06-19T22:00:00.000+00:00",
      "generator": {
        "date": "2025-06-20T08:09:08.079+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2022-1847",
      "initial_release_date": "2022-10-24T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2022-10-24T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2022-10-26T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Fedora und Synology aufgenommen"
        },
        {
          "date": "2022-10-30T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von NetApp aufgenommen"
        },
        {
          "date": "2022-11-07T23:00:00.000+00:00",
          "number": "4",
          "summary": "Referenz(en) aufgenommen: FEDORA-2022-2DC2D8CB7C"
        },
        {
          "date": "2022-11-15T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von FreeBSD aufgenommen"
        },
        {
          "date": "2022-11-16T23:00:00.000+00:00",
          "number": "6",
          "summary": "Referenz(en) aufgenommen: FEDORA-2022-FBCA84B938, FEDORA-2022-003403EC6B, FEDORA-2022-EA403B373F"
        },
        {
          "date": "2022-11-21T23:00:00.000+00:00",
          "number": "7",
          "summary": "Referenz(en) aufgenommen: FEDORA-2022-DBA9BA8E2B"
        },
        {
          "date": "2022-11-22T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2022-11-27T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2022-12-11T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2023-01-12T23:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von SUSE und Ubuntu aufgenommen"
        },
        {
          "date": "2023-01-24T23:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2023-01-26T23:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2023-02-08T23:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2023-03-07T23:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2023-03-08T23:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2023-03-29T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von QNAP aufgenommen"
        },
        {
          "date": "2023-09-17T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Gentoo aufgenommen"
        },
        {
          "date": "2024-03-24T23:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2024-04-22T22:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2024-10-27T23:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von HP aufgenommen"
        },
        {
          "date": "2025-06-19T22:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        }
      ],
      "status": "final",
      "version": "22"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "FreeBSD Project FreeBSD OS",
            "product": {
              "name": "FreeBSD Project FreeBSD OS",
              "product_id": "4035",
              "product_identification_helper": {
                "cpe": "cpe:/o:freebsd:freebsd:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "FreeBSD Project"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "(CIFS) Client/Server \u003cB.04.18.01.00",
                "product": {
                  "name": "HPE HP-UX (CIFS) Client/Server \u003cB.04.18.01.00",
                  "product_id": "T038611"
                }
              },
              {
                "category": "product_version",
                "name": "(CIFS) Client/Server B.04.18.01.00",
                "product": {
                  "name": "HPE HP-UX (CIFS) Client/Server B.04.18.01.00",
                  "product_id": "T038611-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:hp:hp-ux:%28cifs%29_clientserver__b.04.18.01.00"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "HP-UX"
          }
        ],
        "category": "vendor",
        "name": "HPE"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "5.1.x",
                "product": {
                  "name": "IBM Spectrum Scale 5.1.x",
                  "product_id": "T025628",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:spectrum_scale:5.1.x"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Storage Scale"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "NetApp StorageGRID",
            "product": {
              "name": "NetApp StorageGRID",
              "product_id": "920206",
              "product_identification_helper": {
                "cpe": "cpe:/a:netapp:storagegrid:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "NetApp"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c7.8.0",
                "product": {
                  "name": "Open Source Heimdal \u003c7.8.0",
                  "product_id": "T025326"
                }
              },
              {
                "category": "product_version",
                "name": "7.8.0",
                "product": {
                  "name": "Open Source Heimdal 7.8.0",
                  "product_id": "T025326-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:heimdal:heimdal:7.8.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c7.7.1",
                "product": {
                  "name": "Open Source Heimdal \u003c7.7.1",
                  "product_id": "T025327"
                }
              },
              {
                "category": "product_version",
                "name": "7.7.1",
                "product": {
                  "name": "Open Source Heimdal 7.7.1",
                  "product_id": "T025327-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:heimdal:heimdal:7.7.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Heimdal"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c4.15.11",
                "product": {
                  "name": "Open Source Samba \u003c4.15.11",
                  "product_id": "T025105"
                }
              },
              {
                "category": "product_version",
                "name": "4.15.11",
                "product": {
                  "name": "Open Source Samba 4.15.11",
                  "product_id": "T025105-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:samba:samba:4.15.11"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c4.16.6",
                "product": {
                  "name": "Open Source Samba \u003c4.16.6",
                  "product_id": "T025106"
                }
              },
              {
                "category": "product_version",
                "name": "4.16.6",
                "product": {
                  "name": "Open Source Samba 4.16.6",
                  "product_id": "T025106-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:samba:samba:4.16.6"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c4.17.2",
                "product": {
                  "name": "Open Source Samba \u003c4.17.2",
                  "product_id": "T025107"
                }
              },
              {
                "category": "product_version",
                "name": "4.17.2",
                "product": {
                  "name": "Open Source Samba 4.17.2",
                  "product_id": "T025107-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:samba:samba:4.17.2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Samba"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "QNAP NAS",
            "product": {
              "name": "QNAP NAS",
              "product_id": "T017100",
              "product_identification_helper": {
                "cpe": "cpe:/h:qnap:nas:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "QNAP"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Synology DiskStation Manager",
            "product": {
              "name": "Synology DiskStation Manager",
              "product_id": "450918",
              "product_identification_helper": {
                "cpe": "cpe:/a:synology:diskstation_manager:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Synology"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-3437",
      "product_status": {
        "known_affected": [
          "4035",
          "T038611",
          "T012167",
          "450918",
          "T017100",
          "T025628",
          "2951",
          "T002207",
          "T025327",
          "T025107",
          "T025326",
          "T025106",
          "T000126",
          "920206",
          "T025105"
        ]
      },
      "release_date": "2022-10-24T22:00:00.000+00:00",
      "title": "CVE-2022-3437"
    },
    {
      "cve": "CVE-2022-3592",
      "product_status": {
        "known_affected": [
          "4035",
          "T038611",
          "T012167",
          "450918",
          "T017100",
          "T025628",
          "2951",
          "T002207",
          "T025327",
          "T025107",
          "T025326",
          "T025106",
          "T000126",
          "920206",
          "T025105"
        ]
      },
      "release_date": "2022-10-24T22:00:00.000+00:00",
      "title": "CVE-2022-3592"
    }
  ]
}

CVE-2022-3592 (GCVE-0-2022-3592)

Vulnerability from cvelistv5 – Published: 2023-01-12 00:00 – Updated: 2025-04-08 15:14

Summary

A symlink following vulnerability was found in Samba, where a user can create a symbolic link that will make 'smbd' escape the configured share path. This flaw allows a remote user with access to the exported part of the file system under a share via SMB1 unix extensions or NFS to create symlinks to files outside the 'smbd' configured share path and gain access to another restricted server's filesystem.

Severity ?

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE

CWE-61 - - UNIX Symbolic Link (Symlink) Following

Assigner

redhat

References

URL

	Vendor	Product	Version
	n/a	samba	Affected: Affects samba since 4.17.0, Fixed samba 4.17.2.

CVE-2022-3437 (GCVE-0-2022-3437)

Vulnerability from cvelistv5 – Published: 2023-01-12 00:00 – Updated: 2024-10-28 18:59

Summary

A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc() allocated memory when presented with a maliciously small packet. This flaw allows a remote user to send specially crafted malicious data to the application, possibly resulting in a denial of service (DoS) attack.

Severity ?

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

CWE

CWE-122 - - Heap-based Buffer Overflow, CWE-787 - Out-of-bounds Write

Assigner

redhat

References

URL

Tags

	https://bugzilla.redhat.com/show_bug.cgi?id=2137774
	https://www.samba.org/samba/security/CVE-2022-3437.html
	https://access.redhat.com/security/cve/CVE-2022-3437
	http://www.openwall.com/lists/oss-security/2023/02/08/1	mailing-list
	https://security.netapp.com/advisory/ntap-2023021…
	https://security.gentoo.org/glsa/202309-06	vendor-advisory
	https://security.gentoo.org/glsa/202310-06	vendor-advisory
	https://lists.debian.org/debian-lts-announce/2024…	mailing-list

Impacted products

	Vendor	Product	Version
	n/a	samba	Affected: Fixed in samba 4.15.11, samba 4.16.6, samba 4.17.2.

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:samba:samba:4.15.11:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "samba",
            "vendor": "samba",
            "versions": [
              {
                "status": "unaffected",
                "version": "4.15.11"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "LOW",
              "baseScore": 4.3,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-3437",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-22T18:53:20.072020Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-28T18:59:39.543Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T01:07:06.624Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2137774"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.samba.org/samba/security/CVE-2022-3437.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2022-3437"
          },
          {
            "name": "[oss-security] 20230208 [vs] heimdal: CVE-2022-45142: signature validation failure",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2023/02/08/1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20230216-0008/"
          },
          {
            "name": "GLSA-202309-06",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202309-06"
          },
          {
            "name": "GLSA-202310-06",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202310-06"
          },
          {
            "name": "[debian-lts-announce] 20240422 [SECURITY] [DLA 3792-1] samba security update",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00015.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "samba",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Fixed in samba 4.15.11, samba 4.16.6, samba 4.17.2."
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc() allocated memory when presented with a maliciously small packet. This flaw allows a remote user to send specially crafted malicious data to the application, possibly resulting in a denial of service (DoS) attack."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-122",
              "description": "CWE-122 - Heap-based Buffer Overflow, CWE-787 - Out-of-bounds Write",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-04-22T16:06:05.042792",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2137774"
        },
        {
          "url": "https://www.samba.org/samba/security/CVE-2022-3437.html"
        },
        {
          "url": "https://access.redhat.com/security/cve/CVE-2022-3437"
        },
        {
          "name": "[oss-security] 20230208 [vs] heimdal: CVE-2022-45142: signature validation failure",
          "tags": [
            "mailing-list"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2023/02/08/1"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20230216-0008/"
        },
        {
          "name": "GLSA-202309-06",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202309-06"
        },
        {
          "name": "GLSA-202310-06",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202310-06"
        },
        {
          "name": "[debian-lts-announce] 20240422 [SECURITY] [DLA 3792-1] samba security update",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00015.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2022-3437",
    "datePublished": "2023-01-12T00:00:00",
    "dateReserved": "2022-10-10T00:00:00",
    "dateUpdated": "2024-10-28T18:59:39.543Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2022-1847

CVE-2022-3592 (GCVE-0-2022-3592)

CVE-2022-3437 (GCVE-0-2022-3437)

Tags

Sightings

Nomenclature