Unrated severityNVD Advisory· Published Apr 28, 2022· Updated Aug 3, 2024
CVE-2022-29869
CVE-2022-29869
Description
cifs-utils through 6.14, with verbose logging, can cause an information leak when a file contains = (equal sign) characters but is not a valid credentials file.
Affected products
11- cifs-utils/cifs-utilsdescription
- osv-coords10 versionspkg:rpm/opensuse/cifs-utils&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/cifs-utils&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/cifs-utils&distro=openSUSE%20Leap%20Micro%205.2pkg:rpm/suse/cifs-utils&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/cifs-utils&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/cifs-utils&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/cifs-utils&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/cifs-utils&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/cifs-utils&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/cifs-utils&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5
< 6.9-150100.5.18.1+ 9 more
- (no CPE)range: < 6.9-150100.5.18.1
- (no CPE)range: < 6.15-150400.3.9.1
- (no CPE)range: < 6.9-150100.5.18.1
- (no CPE)range: < 6.9-150100.5.18.1
- (no CPE)range: < 6.15-150400.3.9.1
- (no CPE)range: < 6.9-150100.5.18.1
- (no CPE)range: < 6.15-150400.3.9.1
- (no CPE)range: < 6.9-13.23.1
- (no CPE)range: < 6.9-13.23.1
- (no CPE)range: < 6.9-13.23.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5WBOLMANBYJILXQKRRK7OCR774PXJAYY/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HXKZLJYJJEC3TIBFLXUORRMZUKG5W676/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QIYZ4L6SLSYJQ446VJAO2VGAESURQNSP/mitrevendor-advisory
- security.gentoo.org/glsa/202311-05mitrevendor-advisory
- www.debian.org/security/2022/dsa-5157mitrevendor-advisory
- lists.debian.org/debian-lts-announce/2022/05/msg00020.htmlmitremailing-list
- github.com/piastry/cifs-utils/commit/8acc963a2e7e9d63fe1f2e7f73f5a03f83d9c379mitre
- github.com/piastry/cifs-utils/pull/7mitre
News mentions
0No linked articles in our index yet.