Cifs Utils Samba Cifs Utils

Do you want an email whenever new security vulnerabilities are reported in Samba Cifs Utils?

By the Year

In 2022 there have been 2 vulnerabilities in Samba Cifs Utils with an average score of 6.6 out of ten. Last year Cifs Utils had 1 security vulnerability published. That is, 1 more vulnerability have already been reported in 2022 as compared to last year. However, the average CVE base score of the vulnerabilities in 2022 is greater by 0.45.

Year Vulnerabilities Average Score
2022 2 6.55
2021 1 6.10
2020 0 0.00
2019 0 0.00
2018 0 0.00

It may take a day or so for new Cifs Utils vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Samba Cifs Utils Security Vulnerabilities

cifs-utils through 6.14, with verbose logging

CVE-2022-29869 5.3 - Medium - April 28, 2022

cifs-utils through 6.14, with verbose logging, can cause an information leak when a file contains = (equal sign) characters but is not a valid credentials file.

Exposure of Resource to Wrong Sphere

In cifs-utils through 6.14

CVE-2022-27239 7.8 - High - April 27, 2022

In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.

Memory Corruption

A flaw was found in cifs-utils in versions before 6.13

CVE-2021-20208 6.1 - Medium - April 19, 2021

A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host. The highest threat from this vulnerability is to data confidentiality and integrity.

Improper Privilege Management

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Fedora Project Fedora or by Samba? Click the Watch button to subscribe.