CVE-2021-44142

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 21-02-2022 04:15

Last modified: - 23-02-2022 04:47

Total changes: - 3

Description

The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bounds heap read and write via specially crafted extended file attributes. A remote attacker with write access to extended file attributes can execute arbitrary code with the privileges of smbd, typically root.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Low

Attack complexity

Network

Attack vector

High

Availability

High

Confidentiality

High

Integrity

Low

Privileges required

Unchanged

Scope

None

User interaction

8.8

Base score

2.8

5.9

Exploitability score

Impact score

Verification logic

vendor=samba AND product=samba AND versionEndExcluding=4.13.17

vendor=samba AND product=samba AND versionStartIncluding=4.14.0 AND versionEndExcluding=4.14.12

vendor=samba AND product=samba AND versionStartIncluding=4.15.0 AND versionEndExcluding=4.15.5

vendor=Debian AND product=debian_linux AND version=10.0

vendor=Debian AND product=debian_linux AND version=11.0

vendor=canonical AND product=ubuntu_linux AND version=14.04 AND software_edition=esm

vendor=canonical AND product=ubuntu_linux AND version=16.04 AND software_edition=esm

vendor=canonical AND product=ubuntu_linux AND version=18.04 AND software_edition=lts

vendor=canonical AND product=ubuntu_linux AND version=20.04 AND software_edition=lts

vendor=canonical AND product=ubuntu_linux AND version=21.10

vendor=synology AND product=diskstation_manager AND versionStartIncluding=6.2 AND versionEndExcluding=6.2.4-25556.4

vendor=fedoraproject AND product=fedora AND version=34

vendor=fedoraproject AND product=fedora AND version=35

vendor=Red Hat Enterprise Linux AND product=codeready_linux_builder AND version=-

vendor=Red Hat Enterprise Linux AND product=gluster_storage AND version=3.5

vendor=Red Hat Enterprise Linux AND product=virtualization_host AND version=4.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=7.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=8.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_desktop AND version=7.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_eus AND version=8.2

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_eus AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_for_ibm_z_systems AND version=7.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_for_ibm_z_systems AND version=8.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_for_ibm_z_systems_eus AND version=8.2

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_for_ibm_z_systems_eus AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_for_power_big_endian AND version=7.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_for_power_little_endian AND version=7.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_for_power_little_endian AND version=8.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_for_power_little_endian_eus AND version=8.2

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_for_power_little_endian_eus AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_for_scientific_computing AND version=7.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_resilient_storage AND version=7.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server AND version=7.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server AND version=8.1

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_aus AND version=8.2

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_aus AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_tus AND version=8.2

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_tus AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_update_services_for_sap_solutions AND version=8.1

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_update_services_for_sap_solutions AND version=8.2

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_update_services_for_sap_solutions AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_workstation AND version=7.0

Reference

Keywords

CVE-2021-44142

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2021-44142

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures