vulnerability
Amazon Linux 2023: CVE-2022-27239: Important priority package update for cifs-utils
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Apr 27, 2022 | Feb 17, 2025 | Jul 9, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Apr 27, 2022
Added
Feb 17, 2025
Modified
Jul 9, 2025
Description
In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.
A stack-based buffer overflow issue was found in cifs-utils. Parsing the mount.cifs ip command-line argument can lead to local attackers gaining root privileges.
A stack-based buffer overflow issue was found in cifs-utils. Parsing the mount.cifs ip command-line argument can lead to local attackers gaining root privileges.
Solutions
amazon-linux-2023-upgrade-cifs-utilsamazon-linux-2023-upgrade-cifs-utils-debuginfoamazon-linux-2023-upgrade-cifs-utils-debugsourceamazon-linux-2023-upgrade-cifs-utils-develamazon-linux-2023-upgrade-cifs-utils-infoamazon-linux-2023-upgrade-pam-cifscredsamazon-linux-2023-upgrade-pam-cifscreds-debuginfo
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.