2 matches found
Astra Linux – Vulnerability in Heimdal, Samba
A heap-based buffer overflow vulnerability was discovered in Samba, specifically within the GSSAPI unwrapdes and unwrapdes3 routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow for a length-limited write buffer overflow on memory allocated by malloc,...
CLSA-2023-1703011710 Fix CVE(s): CVE-2022-3437
SECURITY UPDATE: A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrapdes and unwrapdes3 routines of Heimdal - debian/patches/CVE-2022-3437-1.patch: thirdparty/heimdal: use constant-time memcmp for arcfour unwrap - debian/patches/CVE-2022-3437-3.patch:...