Oval Definition:oval:org.opensuse.security:def:20223592
Revision Date:2023-06-22Version:1
Title:CVE-2022-3592
Description:

A symlink following vulnerability was found in Samba, where a user can create a symbolic link that will make 'smbd' escape the configured share path. This flaw allows a remote user with access to the exported part of the file system under a share via SMB1 unix extensions or NFS to create symlinks to files outside the 'smbd' configured share path and gain access to another restricted server's filesystem.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2022-3592
SUSE CVE-2022-3592
Platform(s):SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Micro 5.3
SUSE Linux Enterprise Module for Basesystem 15 SP5
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP5
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Micro 5.3 is installed
  • AND samba-client-libs is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND Package Information
  • libsamba-policy-devel-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR libsamba-policy-python3-devel-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR libsamba-policy0-python3-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-ceph-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-client-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-client-libs-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-client-libs-32bit-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-devel-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-gpupdate-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-ldb-ldap-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-libs-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-libs-32bit-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-libs-python3-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-python3-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-winbind-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-winbind-libs-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
  • OR samba-winbind-libs-32bit-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed
    • BACK