CVE-2022-2469

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-2469

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-2469.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-2469

Downstream

DEBIAN-CVE-2022-2469

DSA-5189-1

OESA-2024-1351

OESA-2024-1441

OESA-2024-1442

OESA-2024-1443

OESA-2024-1444

OESA-2024-1445

SUSE-SU-2022:3561-1

SUSE-SU-2022:3562-1

SUSE-SU-2022:3563-1

UBUNTU-CVE-2022-2469

USN-6169-1

openSUSE-SU-2024:12325-1

openSUSE-SU-2024:13666-1

Related

Published

2022-07-19T15:53:56Z

Modified

2025-12-04T10:17:11.982114Z

Severity

3.8 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L CVSS Calculator

Summary

[none]

Details

GNU SASL libgsasl server-side read-out-of-bounds with malicious authenticated GSS-API client

Database specific

{
    "cna_assigner": "GitLab",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/2xxx/CVE-2022-2469.json"
}

References

Affected packages

Git / gitlab.com/gsasl/gsasl

Affected ranges

Type: GIT
Repo: https://gitlab.com/gsasl/gsasl
Events: Introduced

a6ad380cf0ec51561b4cc58fae98e5c68d28d325

Fixed

6d43ea1732da207f77d154b21e364ed4c16dc385

Affected versions

Other

gsasl-0-0-10

gsasl-0-0-11

gsasl-0-0-12

gsasl-0-0-13

gsasl-0-0-14

gsasl-0-0-15rc1

gsasl-0-0-15rc2

gsasl-0-0-8

gsasl-0-0-9

gsasl-0-1-0

gsasl-0-1-1

gsasl-0-1-2

gsasl-0-1-3

gsasl-0-1-4

gsasl-0-2-0

gsasl-0-2-1

gsasl-0-2-10

gsasl-0-2-11

gsasl-0-2-12

gsasl-0-2-13

gsasl-0-2-14

gsasl-0-2-15

gsasl-0-2-16

gsasl-0-2-17

gsasl-0-2-18

gsasl-0-2-19

gsasl-0-2-2

gsasl-0-2-20

gsasl-0-2-21

gsasl-0-2-23

gsasl-0-2-24

gsasl-0-2-25

gsasl-0-2-26

gsasl-0-2-27

gsasl-0-2-28

gsasl-0-2-29

gsasl-0-2-3

gsasl-0-2-4

gsasl-0-2-5

gsasl-0-2-6

gsasl-0-2-7

gsasl-0-2-8

gsasl-0-2-9

gsasl-1-0

gsasl-1-1

gsasl-1-10-0

gsasl-1-2

gsasl-1-3

gsasl-1-3-90

gsasl-1-3-91

gsasl-1-4-0

gsasl-1-4-1

gsasl-1-5-0

gsasl-1-5-1

gsasl-1-5-2

gsasl-1-5-3

gsasl-1-5-4

gsasl-1-5-5

gsasl-1-6-0

gsasl-1-7-1

gsasl-1-7-2

gsasl-1-7-3

gsasl-1-7-4

gsasl-1-7-5

gsasl-1-7-6

gsasl-1-8-0

gsasl-1-8-1

gsasl-1-9-0

gsasl-1-9-1

gsasl-1-9-2

libgsasl-0-0-0

libgsasl-0-0-1

libgsasl-0-0-2

libgsasl-0-0-3

libgsasl-0-0-4

libgsasl-0-0-5

libgsasl-0-0-6

libgsasl-0-0-7

v1.*

v1.10.0

v1.11.0

v1.11.1

v1.11.2

v1.11.3

v2.*

v2.0.0

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-2469.json"