rpm package
suse/samba&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS
Vulnerabilities (8)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-2127 | — | < 4.11.14+git.396.91f4f677472-150200.4.52.5 | 4.11.14+git.396.91f4f677472-150200.4.52.5 | Jul 20, 2023 | An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbindd_pam_auth_crap.c. When performing NTLM authentication, the client replies to cryptographic challenges back to the server. These replies have variable lengths, and Winbind fails to | ||
| CVE-2023-0922 | — | < 4.11.14+git.386.cc81f3dca2-150200.4.47.1 | 4.11.14+git.386.cc81f3dca2-150200.4.47.1 | Apr 3, 2023 | The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection. | ||
| CVE-2021-20251 | — | < 4.11.14+git.384.5dc2c21dce-150200.4.44.1 | 4.11.14+git.384.5dc2c21dce-150200.4.44.1 | Mar 6, 2023 | A flaw was found in samba. A race condition in the password lockout code may lead to the risk of brute force attacks being successful if special conditions are met. | ||
| CVE-2022-38023 | — | < 4.11.14+git.384.5dc2c21dce-150200.4.44.1 | 4.11.14+git.384.5dc2c21dce-150200.4.44.1 | Nov 9, 2022 | Netlogon RPC Elevation of Privilege Vulnerability | ||
| CVE-2022-37966 | — | < 4.11.14+git.384.5dc2c21dce-150200.4.44.1 | 4.11.14+git.384.5dc2c21dce-150200.4.44.1 | Nov 9, 2022 | Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability | ||
| CVE-2022-32742 | — | < 4.11.14+git.325.2e31b7efa01-150200.4.41.1 | 4.11.14+git.325.2e31b7efa01-150200.4.41.1 | Aug 25, 2022 | A flaw was found in Samba. Some SMB1 write requests were not correctly range-checked to ensure the client had sent enough data to fulfill the write, allowing server memory contents to be written into the file (or printer) instead of client-supplied data. The client cannot control | ||
| CVE-2021-44142 | — | < 4.11.14+git.319.91d693db37c-4.35.1 | 4.11.14+git.319.91d693db37c-4.35.1 | Feb 21, 2022 | The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bou | ||
| CVE-2020-25717 | — | < 4.11.14+git.313.d4e302805e1-4.32.1 | 4.11.14+git.313.d4e302805e1-4.32.1 | Feb 18, 2022 | A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation. |
- CVE-2022-2127Jul 20, 2023affected < 4.11.14+git.396.91f4f677472-150200.4.52.5fixed 4.11.14+git.396.91f4f677472-150200.4.52.5
An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbindd_pam_auth_crap.c. When performing NTLM authentication, the client replies to cryptographic challenges back to the server. These replies have variable lengths, and Winbind fails to
- CVE-2023-0922Apr 3, 2023affected < 4.11.14+git.386.cc81f3dca2-150200.4.47.1fixed 4.11.14+git.386.cc81f3dca2-150200.4.47.1
The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection.
- CVE-2021-20251Mar 6, 2023affected < 4.11.14+git.384.5dc2c21dce-150200.4.44.1fixed 4.11.14+git.384.5dc2c21dce-150200.4.44.1
A flaw was found in samba. A race condition in the password lockout code may lead to the risk of brute force attacks being successful if special conditions are met.
- CVE-2022-38023Nov 9, 2022affected < 4.11.14+git.384.5dc2c21dce-150200.4.44.1fixed 4.11.14+git.384.5dc2c21dce-150200.4.44.1
Netlogon RPC Elevation of Privilege Vulnerability
- CVE-2022-37966Nov 9, 2022affected < 4.11.14+git.384.5dc2c21dce-150200.4.44.1fixed 4.11.14+git.384.5dc2c21dce-150200.4.44.1
Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability
- CVE-2022-32742Aug 25, 2022affected < 4.11.14+git.325.2e31b7efa01-150200.4.41.1fixed 4.11.14+git.325.2e31b7efa01-150200.4.41.1
A flaw was found in Samba. Some SMB1 write requests were not correctly range-checked to ensure the client had sent enough data to fulfill the write, allowing server memory contents to be written into the file (or printer) instead of client-supplied data. The client cannot control
- CVE-2021-44142Feb 21, 2022affected < 4.11.14+git.319.91d693db37c-4.35.1fixed 4.11.14+git.319.91d693db37c-4.35.1
The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bou
- CVE-2020-25717Feb 18, 2022affected < 4.11.14+git.313.d4e302805e1-4.32.1fixed 4.11.14+git.313.d4e302805e1-4.32.1
A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.