SB2022042911 - Multiple vulnerabilities in in cifs-utils
Published: April 29, 2022 Updated: June 2, 2022
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Information disclosure (CVE-ID: CVE-2022-29869)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to excessive data output by the application in the stderr function when verbose logging is configured. A remote attacker can gain unauthorized access to sensitive information on the system.
2) Stack-based buffer overflow (CVE-ID: CVE-2022-27239)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a boundary error when parsing the "mount.cifs ip=" command-line argument. A local user can pass specially crafted data to the command, trigger a stack-based buffer overflow and execute arbitrary code with root privileges.
Remediation
Install update from vendor's website.
References
- https://github.com/piastry/cifs-utils/pull/7
- https://github.com/piastry/cifs-utils/commit/8acc963a2e7e9d63fe1f2e7f73f5a03f83d9c379
- http://wiki.robotz.com/index.php/Linux_CIFS_Utils_and_Samba
- https://bugzilla.samba.org/show_bug.cgi?id=15025
- https://bugzilla.suse.com/show_bug.cgi?id=1197216
- https://github.com/piastry/cifs-utils/pull/7/commits/955fb147e97a6a74e1aaa65766de91e2c1479765
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QIYZ4L6SLSYJQ446VJAO2VGAESURQNSP/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HXKZLJYJJEC3TIBFLXUORRMZUKG5W676/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5WBOLMANBYJILXQKRRK7OCR774PXJAYY/
- https://lists.debian.org/debian-lts-announce/2022/05/msg00020.html