Oval Definition:oval:org.opensuse.security:def:20223437
Revision Date:2023-06-22Version:1
Title:CVE-2022-3437
Description:

A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc() allocated memory when presented with a maliciously small packet. This flaw allows a remote user to send specially crafted malicious data to the application, possibly resulting in a denial of service (DoS) attack.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2022-3437
SUSE CVE-2022-3437
SUSE-IU-2022:1143-1
SUSE-IU-2022:1144-1
SUSE-IU-2022:1145-1
SUSE-IU-2023:139-1
SUSE-IU-2023:141-1
SUSE-IU-2023:142-1
SUSE-SU-2022:4395-1
SUSE-SU-2023:0081-1
SUSE-SU-2023:0160-1
openSUSE-SU-2023:0019-1
openSUSE-SU-2023:0020-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Micro 5.3
SUSE Linux Enterprise Module for Basesystem 15 SP5
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP5
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Micro 5.3 is installed
  • AND samba-client-libs-4.15.13+git.591.ab36624310c-150400.3.19.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND Package Information
  • libsamba-policy-devel-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR libsamba-policy-python3-devel-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR libsamba-policy0-python3-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-ceph-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-client-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-client-libs-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-client-libs-32bit-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-devel-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-gpupdate-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-ldb-ldap-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-libs-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-libs-32bit-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-libs-python3-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-python3-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-winbind-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-winbind-libs-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-winbind-libs-32bit-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
    • BACK