CVE-2022-44640

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-44640
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-44640.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-44640
Downstream
Related
Published
2022-12-25T05:15:11.103Z
Modified
2026-02-15T00:54:02.626630Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Heimdal before 7.7.1 allows remote attackers to execute arbitrary code because of an invalid free in the ASN.1 codec used by the Key Distribution Center (KDC).

References

Affected packages

Git / github.com/samba-team/samba

Affected ranges

Type
GIT
Repo
https://github.com/samba-team/samba
Events
Introduced
e95d85f784ae6b19f2cb42cc9039b60b146e5b69
Fixed
6cc6e233b5ceb2a579400f020b61c67ca7bbeb78
Introduced
fbec737d9d3d992b54f52defcba62a304efef8f7
Fixed
ab48448c650c96095fa183c3531a3dd244983664
Introduced
fc8342bd26d1c55ca5780b427f675f31147b27f9
Fixed
0c85a0adaa57df2541ec2d395d1f7cf936bc2e43

Affected versions

ldb-2.*
ldb-2.4.1
ldb-2.5.1
ldb-2.5.2
samba-4.*
samba-4.15.0
samba-4.15.1
samba-4.15.2
samba-4.16.0
samba-4.16.1
samba-4.16.2
samba-4.16.3
samba-4.16.4
samba-4.16.5
samba-4.16.6
samba-4.16.7
samba-4.17.0
samba-4.17.1
samba-4.17.2
samba-4.17.3

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-44640.json"