CVE reported in package libwbclient0

[marcino239]

trivy reports the following vulnerability in package libwbclient0 included by gss-ntlmssp

Library libwbclient0
Vulnerability CVE-2022-44640
Installed Version 2:4.13.13+dfsg-1~deb11u5
Title Heimdal before 7.7.1 allows remote attackers to execute arbitrary code ... https://avd.aquasec.com/nvd/cve-2022-44640

Vulnerability: CVE-2022-45141
Title: Samba AD DC using Heimdal can be forced to issue rc4-hmac encrypted... https://avd.aquasec.com/nvd/cve-2022-45141

[simo5]

GSS-NTLMSSP only builds against libwbclient, does not include it.

[marcino239]

Thanks