rpm package
suse/samba&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS
pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-32742 | — | < 4.11.14+git.325.2e31b7efa01-150200.4.41.1 | 4.11.14+git.325.2e31b7efa01-150200.4.41.1 | Aug 25, 2022 | A flaw was found in Samba. Some SMB1 write requests were not correctly range-checked to ensure the client had sent enough data to fulfill the write, allowing server memory contents to be written into the file (or printer) instead of client-supplied data. The client cannot control | ||
| CVE-2021-44142 | — | < 4.11.14+git.319.91d693db37c-4.35.1 | 4.11.14+git.319.91d693db37c-4.35.1 | Feb 21, 2022 | The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bou | ||
| CVE-2020-25717 | — | < 4.11.14+git.313.d4e302805e1-4.32.1 | 4.11.14+git.313.d4e302805e1-4.32.1 | Feb 18, 2022 | A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation. |
- CVE-2022-32742Aug 25, 2022affected < 4.11.14+git.325.2e31b7efa01-150200.4.41.1fixed 4.11.14+git.325.2e31b7efa01-150200.4.41.1
A flaw was found in Samba. Some SMB1 write requests were not correctly range-checked to ensure the client had sent enough data to fulfill the write, allowing server memory contents to be written into the file (or printer) instead of client-supplied data. The client cannot control
- CVE-2021-44142Feb 21, 2022affected < 4.11.14+git.319.91d693db37c-4.35.1fixed 4.11.14+git.319.91d693db37c-4.35.1
The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bou
- CVE-2020-25717Feb 18, 2022affected < 4.11.14+git.313.d4e302805e1-4.32.1fixed 4.11.14+git.313.d4e302805e1-4.32.1
A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.