CVE-2022-27882

7.5HIGH

Key Information:

Vendor: OpenBSD
Status: OpenBSD
Vendor: CVE Published:; 25 March 2022

Summary

slaacd in OpenBSD 6.9 and 7.0 before 2022-03-22 has an integer signedness error and resultant heap-based buffer overflow triggerable by a crafted IPv6 router advertisement. NOTE: privilege separation and pledge can prevent exploitation.

References

https://blog.quarkslab.com/heap-overflow-in-openbsds-slaa...

x_refsource_MISC

https://ftp.openbsd.org/pub/OpenBSD/patches/7.0/common/01...

x_refsource_MISC

https://ftp.openbsd.org/pub/OpenBSD/patches/6.9/common/03...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 25, 2022
Vulnerability Reserved
Mar 25, 2022