VYPR

rpm package

opensuse/samba&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/samba&distro=openSUSE%20Tumbleweed

Vulnerabilities (166)

  • CVE-2019-14870Dec 10, 2019
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an issue, where the S4U (MS-SFU) Kerberos delegation model includes a feature allowing for a subset of clients to be opted out of constrained delegation in any way, either S4U2Self or regu

  • CVE-2019-14847Nov 6, 2019
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    A flaw was found in samba 4.0.0 before samba 4.9.15 and samba 4.10.x before 4.10.10. An attacker can crash AD DC LDAP server via dirsync resulting in denial of service. Privilege escalation is not possible with this issue.

  • CVE-2019-14833Nov 6, 2019
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    A flaw was found in Samba, all versions starting samba 4.5.0 before samba 4.9.15, samba 4.10.10, samba 4.11.2, in the way it handles a user password change or a new password for a samba user. The Samba Active Directory Domain Controller can be configured to use a custom script to

  • CVE-2019-10218Nov 6, 2019
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    A flaw was found in the samba client, all samba versions before samba 4.11.2, 4.10.10 and 4.9.15, where a malicious server can supply a pathname to the client with separators. This could allow the client to access files and folders outside of the SMB network pathnames. An attacke

  • CVE-2019-10197Sep 3, 2019
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    A flaw was found in samba versions 4.9.x up to 4.9.13, samba 4.10.x up to 4.10.8 and samba 4.11.x up to 4.11.0rc3, when certain parameters were set in the samba configuration file. An unauthenticated attacker could use this flaw to escape the shared directory and access the conte

  • CVE-2018-16860Jul 31, 2019
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    A flaw was found in samba's Heimdal KDC implementation, versions 4.8.x up to, excluding 4.8.12, 4.9.x up to, excluding 4.9.8 and 4.10.x up to, excluding 4.10.3, when used in AD DC mode. A man in the middle attacker could use this flaw to intercept the request to the KDC and repla

  • CVE-2019-12436Jun 19, 2019
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    Samba 4.10.x before 4.10.5 has a NULL pointer dereference, leading to an AD DC LDAP server Denial of Service. This is related to an attacker using the paged search control. The attacker must have directory read access in order to attempt an exploit.

  • CVE-2019-12435Jun 19, 2019
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    Samba 4.9.x before 4.9.9 and 4.10.x before 4.10.5 has a NULL pointer dereference, leading to Denial of Service. This is related to the AD DC DNS management server (dnsserver) RPC server process.

  • CVE-2019-3880Apr 9, 2019
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. An unprivileged attacker could use this flaw to create a new registry hive file anywhere they have unix permissions which could lead to creation of a new file in the Samba sh

  • CVE-2019-3870Apr 9, 2019
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    A vulnerability was found in Samba from version (including) 4.9 to versions before 4.9.6 and 4.10.2. During the creation of a new Samba AD DC, files are created in a private subdirectory of the install location. This directory is typically mode 0700, that is owner (root) only acc

  • CVE-2019-3824Mar 6, 2019
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    A flaw was found in the way an LDAP search expression could crash the shared LDAP server process of a samba AD DC in samba before version 4.10. An authenticated user, having read permissions on the LDAP server, could use this flaw to cause denial of service.

  • CVE-2018-16857Nov 28, 2018
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    Samba from version 4.9.0 and before version 4.9.3 that have AD DC configurations watching for bad passwords (to restrict brute forcing of passwords) in a window of more than 3 minutes may not watch for bad passwords at all. The primary risk from this issue is with regards to doma

  • CVE-2018-16853Nov 28, 2018
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    Samba from version 4.7.0 has a vulnerability that allows a user in a Samba AD domain to crash the KDC when Samba is built in the non-default MIT Kerberos configuration. With this advisory the Samba Team clarify that the MIT Kerberos build of the Samba AD DC is considered experime

  • CVE-2018-16852Nov 28, 2018
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    Samba from version 4.9.0 and before version 4.9.3 is vulnerable to a NULL pointer de-reference. During the processing of an DNS zone in the DNS management DCE/RPC server, the internal DNS server or the Samba DLZ plugin for BIND9, if the DSPROPERTY_ZONE_MASTER_SERVERS property or

  • CVE-2018-16851Nov 28, 2018
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    Samba from version 4.0.0 and before versions 4.7.12, 4.8.7, 4.9.3 is vulnerable to a denial of service. During the processing of an LDAP search before Samba's AD DC returns the LDAP entries to the client, the entries are cached in a single memory object with a maximum size of 256

  • CVE-2018-16841Nov 28, 2018
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    Samba from version 4.3.0 and before versions 4.7.12, 4.8.7 and 4.9.3 are vulnerable to a denial of service. When configured to accept smart-card authentication, Samba's KDC will call talloc_free() twice on the same memory if the principal in a validly signed certificate does not

  • CVE-2018-14629Nov 28, 2018
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    A denial of service vulnerability was discovered in Samba's LDAP server before versions 4.7.12, 4.8.7, and 4.9.3. A CNAME loop could lead to infinite recursion in the server. An unprivileged local attacker could create such an entry, leading to denial of service.

  • CVE-2016-2123Nov 1, 2018
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    A flaw was found in samba versions 4.0.0 to 4.5.2. The Samba routine ndr_pull_dnsp_name contains an integer wrap problem, leading to an attacker-controlled memory overwrite. ndr_pull_dnsp_name parses data from the Samba Active Directory ldb database. Any user who can write to the

  • CVE-2016-2125Oct 31, 2018
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    It was found that Samba before versions 4.5.3, 4.4.8, 4.3.13 always requested forwardable tickets when using Kerberos authentication. A service to which Samba authenticated using Kerberos could subsequently use the ticket to impersonate Samba to other services or domain users.

  • CVE-2018-10919Aug 22, 2018
    affected < 4.14.6+git.182.2205d5224e3-1.1fixed 4.14.6+git.182.2205d5224e3-1.1

    The Samba Active Directory LDAP server was vulnerable to an information disclosure flaw because of missing access control checks. An authenticated attacker could use this flaw to extract confidential attribute values using LDAP search expressions. Samba versions before 4.6.16, 4.

Page 4 of 9