SB2025081218 - Ubuntu update for cifs-utils

Description

This security bulletin contains information about 4 secuirty vulnerabilities.

1) OS Command Injection (CVE-ID: CVE-2020-14342)

The vulnerability allows a local authenticated user to execute arbitrary code.

It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges.

2) Improper Privilege Management (CVE-ID: CVE-2021-20208)

The vulnerability allows a local user to escalate privileges.

The vulnerability exists due to improper privilege management in cifs-utils. A local user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host.

3) Stack-based buffer overflow (CVE-ID: CVE-2022-27239)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error when parsing the "mount.cifs ip=" command-line argument. A local user can pass specially crafted data to the command, trigger a stack-based buffer overflow and execute arbitrary code with root privileges.

4) Information disclosure (CVE-ID: CVE-2022-29869)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to excessive data output by the application in the stderr function when verbose logging is configured. A remote attacker can gain unauthorized access to sensitive information on the system.

Remediation

Install update from vendor's website.

References

• https://ubuntu.com/security/notices/USN-7688-1