CVE-2022-2469

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2022-2469
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-2469.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-2469
Downstream
Related
Published
2022-07-19T15:53:56Z
Modified
2025-12-04T10:17:11.982114Z
Severity
  • 3.8 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L CVSS Calculator
Summary
[none]
Details

GNU SASL libgsasl server-side read-out-of-bounds with malicious authenticated GSS-API client

Database specific 
{
    "cna_assigner": "GitLab",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/2xxx/CVE-2022-2469.json"
}
References

Affected packages

Git / gitlab.com/gsasl/gsasl

Affected ranges

Type
GIT
Repo
https://gitlab.com/gsasl/gsasl
Events
Introduced
a6ad380cf0ec51561b4cc58fae98e5c68d28d325
Fixed
6d43ea1732da207f77d154b21e364ed4c16dc385

Affected versions

Other

gsasl-0-0-10
gsasl-0-0-11
gsasl-0-0-12
gsasl-0-0-13
gsasl-0-0-14
gsasl-0-0-15rc1
gsasl-0-0-15rc2
gsasl-0-0-8
gsasl-0-0-9
gsasl-0-1-0
gsasl-0-1-1
gsasl-0-1-2
gsasl-0-1-3
gsasl-0-1-4
gsasl-0-2-0
gsasl-0-2-1
gsasl-0-2-10
gsasl-0-2-11
gsasl-0-2-12
gsasl-0-2-13
gsasl-0-2-14
gsasl-0-2-15
gsasl-0-2-16
gsasl-0-2-17
gsasl-0-2-18
gsasl-0-2-19
gsasl-0-2-2
gsasl-0-2-20
gsasl-0-2-21
gsasl-0-2-23
gsasl-0-2-24
gsasl-0-2-25
gsasl-0-2-26
gsasl-0-2-27
gsasl-0-2-28
gsasl-0-2-29
gsasl-0-2-3
gsasl-0-2-4
gsasl-0-2-5
gsasl-0-2-6
gsasl-0-2-7
gsasl-0-2-8
gsasl-0-2-9
gsasl-1-0
gsasl-1-1
gsasl-1-10-0
gsasl-1-2
gsasl-1-3
gsasl-1-3-90
gsasl-1-3-91
gsasl-1-4-0
gsasl-1-4-1
gsasl-1-5-0
gsasl-1-5-1
gsasl-1-5-2
gsasl-1-5-3
gsasl-1-5-4
gsasl-1-5-5
gsasl-1-6-0
gsasl-1-7-1
gsasl-1-7-2
gsasl-1-7-3
gsasl-1-7-4
gsasl-1-7-5
gsasl-1-7-6
gsasl-1-8-0
gsasl-1-8-1
gsasl-1-9-0
gsasl-1-9-1
gsasl-1-9-2
libgsasl-0-0-0
libgsasl-0-0-1
libgsasl-0-0-2
libgsasl-0-0-3
libgsasl-0-0-4
libgsasl-0-0-5
libgsasl-0-0-6
libgsasl-0-0-7

v1.*

v1.10.0
v1.11.0
v1.11.1
v1.11.2
v1.11.3

v2.*

v2.0.0