CVE-2022-27239 - OpenCVE

In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Suse	Enterprise Storage Linux Enterprise Desktop Linux Enterprise Server Manager Proxy Caas Platform Linux Enterprise Software Development Kit Manager Server Linux Enterprise Storage Openstack Cloud Crowbar Linux Enterprise Real Time Manager Retail Branch Server Openstack Cloud Linux Enterprise Micro Linux Enterprise Point Of Service Linux Enterprise High Performance Computing
Debian	Debian Linux
Fedoraproject	Fedora
Samba	Cifs-utils
Hp	Helion Openstack

Configuration 1 [-]

cpe:2.3:a:samba:cifs-utils:*:*:*:*:*:*:*:*

Configuration 2 [-]

OR	cpe:2.3:o:debian:debian_linux:9.0:::::::*
	cpe:2.3:o:debian:debian_linux:10.0:::::::*
	cpe:2.3:o:debian:debian_linux:11.0:::::::*

Configuration 3 [-]

OR	cpe:2.3:a:suse:caas_platform:4.0:::::::*
	cpe:2.3:a:suse:enterprise_storage:6.0:::::::*
	cpe:2.3:a:suse:enterprise_storage:7.0:::::::*
	cpe:2.3:a:suse:linux_enterprise_point_of_service:11.0:sp3::::::
	cpe:2.3:a:suse:linux_enterprise_storage:7.1:::::::*
	cpe:2.3:a:suse:manager_proxy:4.1:::::::*
	cpe:2.3:a:suse:manager_proxy:4.2:::::::*
	cpe:2.3:a:suse:manager_proxy:4.3:::::::*
	cpe:2.3:a:suse:manager_retail_branch_server:4.1:::::::*
	cpe:2.3:a:suse:manager_retail_branch_server:4.2:::::::*
	cpe:2.3:a:suse:manager_retail_branch_server:4.3:::::::*
	cpe:2.3:a:suse:manager_server:4.1:::::::*
	cpe:2.3:a:suse:manager_server:4.2:::::::*
	cpe:2.3:a:suse:manager_server:4.3:::::::*
	cpe:2.3:a:suse:openstack_cloud:8.0:::::::*
	cpe:2.3:a:suse:openstack_cloud:9.0:::::::*
	cpe:2.3:a:suse:openstack_cloud_crowbar:8.0:::::::*
	cpe:2.3:a:suse:openstack_cloud_crowbar:9.0:::::::*
	cpe:2.3:o:suse:linux_enterprise_desktop:15:sp3::::::
	cpe:2.3:o:suse:linux_enterprise_desktop:15:sp4::::::
	cpe:2.3:o:suse:linux_enterprise_high_performance_computing:12.0:sp5:::-:::*
	cpe:2.3:o:suse:linux_enterprise_high_performance_computing:15.0:-:::ltss:::*
	cpe:2.3:o:suse:linux_enterprise_high_performance_computing:15.0:sp1:::espos:::*
	cpe:2.3:o:suse:linux_enterprise_high_performance_computing:15.0:sp1:::ltss:::*
	cpe:2.3:o:suse:linux_enterprise_high_performance_computing:15.0:sp2:::espos:::*
	cpe:2.3:o:suse:linux_enterprise_high_performance_computing:15.0:sp2:::ltss:::*
	cpe:2.3:o:suse:linux_enterprise_high_performance_computing:15.0:sp3:::-:::*
	cpe:2.3:o:suse:linux_enterprise_high_performance_computing:15.0:sp4:::-:::*
	cpe:2.3:o:suse:linux_enterprise_micro:5.2:::::-::
	cpe:2.3:o:suse:linux_enterprise_micro:5.2:::::rancher::
	cpe:2.3:o:suse:linux_enterprise_real_time:15.0:sp2::::::
	cpe:2.3:o:suse:linux_enterprise_server:11:sp3::::-::*
	cpe:2.3:o:suse:linux_enterprise_server:11:sp4:::ltss:::*
	cpe:2.3:o:suse:linux_enterprise_server:12:sp2:::business_critical_linux:-::
	cpe:2.3:o:suse:linux_enterprise_server:12:sp3::::sap::*
	cpe:2.3:o:suse:linux_enterprise_server:12:sp3:::business_critical_linux:-::
	cpe:2.3:o:suse:linux_enterprise_server:12:sp3:::espos:::*
	cpe:2.3:o:suse:linux_enterprise_server:12:sp3:::ltss:::*
	cpe:2.3:o:suse:linux_enterprise_server:12:sp4:::-:sap::
	cpe:2.3:o:suse:linux_enterprise_server:12:sp4:::espos:::*
	cpe:2.3:o:suse:linux_enterprise_server:12:sp4:::ltss:::*
	cpe:2.3:o:suse:linux_enterprise_server:12:sp5::::sap::*
	cpe:2.3:o:suse:linux_enterprise_server:15:::::sap::
	cpe:2.3:o:suse:linux_enterprise_server:15:-:::espos:::*
	cpe:2.3:o:suse:linux_enterprise_server:15:-:::ltss:::*
	cpe:2.3:o:suse:linux_enterprise_server:15:sp1:::business_critical_linux:-::
	cpe:2.3:o:suse:linux_enterprise_server:15:sp1:::ltss:::*
	cpe:2.3:o:suse:linux_enterprise_server:15:sp2:::business_critical_linux:-::
	cpe:2.3:o:suse:linux_enterprise_server:15:sp2:::ltss:::*
	cpe:2.3:o:suse:linux_enterprise_server:15:sp3::::::
	cpe:2.3:o:suse:linux_enterprise_server:15:sp4::::::
	cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:sp5::::::

Configuration 4 [-]

cpe:2.3:a:hp:helion_openstack:8.0:*:*:*:*:*:*:*

Configuration 5 [-]

OR	cpe:2.3:o:fedoraproject:fedora:34:::::::*
	cpe:2.3:o:fedoraproject:fedora:35:::::::*
	cpe:2.3:o:fedoraproject:fedora:36:::::::*

References

Link	Resource
http://wiki.robotz.com/index.php/Linux_CIFS_Utils_and_Samba	Third Party Advisory
https://bugzilla.samba.org/show_bug.cgi?id=15025	Issue Tracking Permissions Required Vendor Advisory
https://bugzilla.suse.com/show_bug.cgi?id=1197216	Issue Tracking Patch Third Party Advisory
https://github.com/piastry/cifs-utils/pull/7	Issue Tracking Patch Third Party Advisory
https://github.com/piastry/cifs-utils/pull/7/commits/955fb147e97a6a74e1aaa65766de91e2c1479765	Patch Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/05/msg00020.html	Mailing List Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5WBOLMANBYJILXQKRRK7OCR774PXJAYY/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HXKZLJYJJEC3TIBFLXUORRMZUKG5W676/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QIYZ4L6SLSYJQ446VJAO2VGAESURQNSP/
https://security.gentoo.org/glsa/202311-05
https://www.debian.org/security/2022/dsa-5157	Third Party Advisory