Debian update for cifs-utils

Published: 2022-06-08

Risk	Medium
Patch available	YES
Number of vulnerabilities	2
CVE-ID	CVE-2022-27239 CVE-2022-29869
CWE-ID	CWE-121 CWE-200
Exploitation vector	Network
Public exploit	N/A
Vulnerable software	cifs-utils (Debian package) Operating systems & Components / Operating system package or component
Vendor	Debian

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Stack-based buffer overflow

EUVDB-ID: #VU63956

Risk: Low

CVSSv4.0: 7.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:U/U:Clear]

CVE-ID: CVE-2022-27239

CWE-ID: CWE-121 - Stack-based buffer overflow

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error when parsing the "mount.cifs ip=" command-line argument. A local user can pass specially crafted data to the command, trigger a stack-based buffer overflow and execute arbitrary code with root privileges.

Mitigation

Update cifs-utils package to one of the following versions: 2:6.8-2+deb10u1, 2:6.11-3.1+deb11u1.

Vulnerable software versions

cifs-utils (Debian package): before 2:6.8-2+deb10u1

CPE2.3

cpe:2.3:a:debian:cifs-utils_debian_package:*:*:*:*:*:debian_linux:*:*

External links

https://www.debian.org/security/2022/dsa-5157

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Information disclosure

EUVDB-ID: #VU62702

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-29869

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor