Unrated severityNVD Advisory· Published Dec 10, 2019· Updated Aug 5, 2024

CVE-2019-14870

Description

All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an issue, where the S4U (MS-SFU) Kerberos delegation model includes a feature allowing for a subset of clients to be opted out of constrained delegation in any way, either S4U2Self or regular Kerberos authentication, by forcing all tickets for these clients to be non-forwardable. In AD this is implemented by a user attribute delegation_not_allowed (aka not-delegated), which translates to disallow-forwardable. However the Samba AD DC does not do that for S4U2Self and does set the forwardable flag even if the impersonated client has the not-delegated flag set.

Affected products

osv-coords20 versions
pkg:rpm/opensuse/libheimdal&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/libheimdal&distro=openSUSE%20Leap%2015.4 pkg:rpm/opensuse/samba&distro=openSUSE%20Leap%2015.1 pkg:rpm/opensuse/samba&distro=openSUSE%20Tumbleweed pkg:rpm/suse/ldb&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/ldb&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/ldb&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5 pkg:rpm/suse/libheimdal&distro=SUSE%20Package%20Hub%2015%20SP3 pkg:rpm/suse/libheimdal&distro=SUSE%20Package%20Hub%2015%20SP4 pkg:rpm/suse/samba&distro=SUSE%20Enterprise%20Storage%206 pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP5 pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015 pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP1 pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015 pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1 pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015 pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%202%2015%20SP1 pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5
< 7.8.0-bp153.2.4.1+ 19 more
- (no CPE)range: < 7.8.0-bp153.2.4.1
- (no CPE)range: < 7.8.0-bp154.2.4.1
- (no CPE)range: < 4.9.5+git.224.86a8e66adea-lp151.2.12.1
- (no CPE)range: < 4.14.6+git.182.2205d5224e3-1.1
- (no CPE)range: < 1.5.8-3.5.1
- (no CPE)range: < 1.5.8-3.5.1
- (no CPE)range: < 1.5.8-3.5.1
- (no CPE)range: < 7.8.0-bp153.2.4.1
- (no CPE)range: < 7.8.0-bp154.2.4.1
- (no CPE)range: < 4.9.5+git.224.86a8e66adea-3.18.1
- (no CPE)range: < 4.10.17+git.203.862547088ca-3.14.1
- (no CPE)range: < 4.7.11+git.202.6edee83fb34-4.34.1
- (no CPE)range: < 4.9.5+git.224.86a8e66adea-3.18.1
- (no CPE)range: < 4.7.11+git.202.6edee83fb34-4.34.1
- (no CPE)range: < 4.9.5+git.224.86a8e66adea-3.18.1
- (no CPE)range: < 4.7.11+git.202.6edee83fb34-4.34.1
- (no CPE)range: < 4.9.5+git.224.86a8e66adea-3.18.1
- (no CPE)range: < 4.10.17+git.203.862547088ca-3.14.1
- (no CPE)range: < 4.10.17+git.203.862547088ca-3.14.1
- (no CPE)range: < 4.10.17+git.203.862547088ca-3.14.1
Red Hat/sambav5
Range: all versions 4.11.x before 4.11.3

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.opensuse.org/opensuse-security-announce/2019-12/msg00038.htmlmitrevendor-advisory
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PJH3ROOFYMOATD2UEPC47P5RPBDTY77E/mitrevendor-advisory
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WNKA4YIPV7AZR7KK3GW6L3HKGHSGJZFE/mitrevendor-advisory
security.gentoo.org/glsa/202003-52mitrevendor-advisory
security.gentoo.org/glsa/202310-06mitrevendor-advisory
usn.ubuntu.com/4217-1/mitrevendor-advisory
usn.ubuntu.com/4217-2/mitrevendor-advisory
lists.debian.org/debian-lts-announce/2021/05/msg00023.htmlmitremailing-list
lists.debian.org/debian-lts-announce/2022/11/msg00034.htmlmitremailing-list
bugzilla.redhat.com/show_bug.cgimitre
security.netapp.com/advisory/ntap-20191210-0002/mitre
security.netapp.com/advisory/ntap-20230216-0008/mitre
www.samba.org/samba/security/CVE-2019-14870.htmlmitre
www.synology.com/security/advisory/Synology_SA_19_40mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000