CVE-2022-37703

2022-09-1300:00:00

ubuntu.com

amanda 3.5.1

information leak

vulnerability

calcsize suid binary

opendir()

arbitrary path

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

EPSS

0.001

Percentile

18.0%

JSON

In Amanda 3.5.1, an information leak vulnerability was found in the
calcsize SUID binary. An attacker can abuse this vulnerability to know if a
directory exists or not anywhere in the fs. The binary will use opendir()
as root directly without checking the path, letting the attacker provide an
arbitrary path.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchamanda< 1:3.5.1-1ubuntu0.3UNKNOWN
ubuntu20.04noarchamanda< 1:3.5.1-2ubuntu0.3UNKNOWN
ubuntu22.04noarchamanda< 1:3.5.1-8ubuntu1.3UNKNOWN
ubuntu22.10noarchamanda< 1:3.5.1-9ubuntu0.3UNKNOWN
ubuntu23.04noarchamanda< 1:3.5.1-11UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	amanda	< 1:3.5.1-1ubuntu0.3	UNKNOWN
ubuntu	20.04	noarch	amanda	< 1:3.5.1-2ubuntu0.3	UNKNOWN
ubuntu	22.04	noarch	amanda	< 1:3.5.1-8ubuntu1.3	UNKNOWN
ubuntu	22.10	noarch	amanda	< 1:3.5.1-9ubuntu0.3	UNKNOWN
ubuntu	23.04	noarch	amanda	< 1:3.5.1-11	UNKNOWN