Unrated severityNVD Advisory· Published Jul 19, 2022· Updated Aug 3, 2024
CVE-2022-2469
CVE-2022-2469
Description
GNU SASL libgsasl server-side read-out-of-bounds with malicious authenticated GSS-API client
Affected products
7- osv-coords6 versionspkg:rpm/suse/libgsasl&distro=SUSE%20Manager%20Proxy%20Module%204.1pkg:rpm/suse/libgsasl&distro=SUSE%20Manager%20Proxy%20Module%204.2pkg:rpm/suse/libgsasl&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/libgsasl&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/libgsasl&distro=SUSE%20Manager%20Server%20Module%204.2pkg:rpm/suse/libgsasl&distro=SUSE%20Manager%20Server%20Module%204.3
< 1.8.0-150200.3.3.1+ 5 more
- (no CPE)range: < 1.8.0-150200.3.3.1
- (no CPE)range: < 1.8.0-150300.3.3.1
- (no CPE)range: < 1.8.0-150400.3.3.1
- (no CPE)range: < 1.8.0-150200.3.3.1
- (no CPE)range: < 1.8.0-150300.3.3.1
- (no CPE)range: < 1.8.0-150400.3.3.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- www.debian.org/security/2022/dsa-5189mitrevendor-advisoryx_refsource_DEBIAN
- gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2469.jsonmitrex_refsource_CONFIRM
- gitlab.com/gsasl/gsasl/-/commit/796e4197f696261c1f872d7576371232330bcc30mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.