摘要:
A flawed logical condition in lib/gssapi/spnego/accept_sec_context.callows a malicious actor to remotely trigger a NULL pointer dereferenceusing a crafted negTokenInit token.
安全等级: Low
公告ID: KylinSec-SA-2023-1003
发布日期: 2023年1月5日
关联CVE: CVE-2022-3116
A flawed logical condition in lib/gssapi/spnego/accept_sec_context.callows a malicious actor to remotely trigger a NULL pointer dereferenceusing a crafted negTokenInit token.
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2022-3116 | KY3.4-4A | samba | Unaffected |
| CVE-2022-3116 | KY3.4-5 | samba | Unaffected |
| CVE-2022-3116 | KY3.5.1 | samba | Unaffected |
