CVE-2022-27239 — HIGH (7.8)

Q: What is CVE-2022-27239?

CVE-2022-27239 is a vulnerability with a CVSS score of 7.8 (HIGH). In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.

Q: How severe is CVE-2022-27239?

CVE-2022-27239 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-27239?

Check the references section above for vendor advisories and patch information. Affected products include: Samba Cifs-Utils, Debian Debian Linux, Suse Caas Platform, Suse Enterprise Storage, Suse Linux Enterprise Point Of Service.

Vulnerability Description

In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Samba	Cifs-Utils	< 6.15
Debian	Debian Linux	9.0
Suse	Caas Platform	4.0
Suse	Enterprise Storage	6.0
Suse	Linux Enterprise Point Of Service	11.0
Suse	Linux Enterprise Storage	7.1
Suse	Manager Proxy	4.1
Suse	Manager Retail Branch Server	4.1
Suse	Manager Server	4.1
Suse	Openstack Cloud	8.0
Suse	Openstack Cloud Crowbar	8.0
Suse	Linux Enterprise Desktop	15
Suse	Linux Enterprise High Performance Computing	12.0
Suse	Linux Enterprise Micro	5.2
Suse	Linux Enterprise Real Time	15.0
Suse	Linux Enterprise Server	11
Suse	Linux Enterprise Software Development Kit	12
Hp	Helion Openstack	8.0
Fedoraproject	Fedora	34

Related Weaknesses (CWE)

CWE-787

References

http://wiki.robotz.com/index.php/Linux_CIFS_Utils_and_SambaThird Party Advisory
https://bugzilla.samba.org/show_bug.cgi?id=15025Issue TrackingPermissions RequiredVendor Advisory
https://bugzilla.suse.com/show_bug.cgi?id=1197216Issue TrackingPatchThird Party Advisory
https://github.com/piastry/cifs-utils/pull/7Issue TrackingPatchThird Party Advisory
https://github.com/piastry/cifs-utils/pull/7/commits/955fb147e97a6a74e1aaa65766dPatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2022/05/msg00020.htmlMailing ListThird Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
https://security.gentoo.org/glsa/202311-05
https://www.debian.org/security/2022/dsa-5157Third Party Advisory
http://wiki.robotz.com/index.php/Linux_CIFS_Utils_and_SambaThird Party Advisory
https://bugzilla.samba.org/show_bug.cgi?id=15025Issue TrackingPermissions RequiredVendor Advisory
https://bugzilla.suse.com/show_bug.cgi?id=1197216Issue TrackingPatchThird Party Advisory
https://github.com/piastry/cifs-utils/pull/7Issue TrackingPatchThird Party Advisory

FAQ

What is CVE-2022-27239?

CVE-2022-27239 is a vulnerability with a CVSS score of 7.8 (HIGH). In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.

How severe is CVE-2022-27239?

CVE-2022-27239 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-27239?

Check the references section above for vendor advisories and patch information. Affected products include: Samba Cifs-Utils, Debian Debian Linux, Suse Caas Platform, Suse Enterprise Storage, Suse Linux Enterprise Point Of Service.