CVE-2022-32742 - log back

CVE-2022-32742 edited at 28 Jul 2022 09:40:56
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Information disclosure
Description
+ Server memory information leak via SMB1.
References
+ https://www.samba.org/samba/security/CVE-2022-32742.html
Notes
+ This is an SMB1-only vulnerability. Since Samba release 4.11.0 SMB1 has been disabled by default. We do not recommend enabling SMB1 server support. For Samba versions prior to 4.11.0 please disable SMB1 by adding `server min protocol = SMB2_02` to the [global] section of your smb.conf and restarting smbd.
CVE-2022-32742 created at 28 Jul 2022 06:59:34