VYPR

rpm package

suse/samba&distro=SUSE Linux Enterprise Real Time 15 SP3

pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3

Vulnerabilities (12)

  • CVE-2023-34968Jul 20, 2023
    affected < 4.15.13+git.663.9c654e06cdb-150300.3.57.5fixed 4.15.13+git.663.9c654e06cdb-150300.3.57.5

    A path disclosure vulnerability was found in Samba. As part of the Spotlight protocol, Samba discloses the server-side absolute path of shares, files, and directories in the results for search queries. This flaw allows a malicious client or an attacker with a targeted RPC request

  • CVE-2023-34967Jul 20, 2023
    affected < 4.15.13+git.663.9c654e06cdb-150300.3.57.5fixed 4.15.13+git.663.9c654e06cdb-150300.3.57.5

    A Type Confusion vulnerability was found in Samba's mdssvc RPC service for Spotlight. When parsing Spotlight mdssvc RPC packets, one encoded data structure is a key-value style dictionary where the keys are character strings, and the values can be any of the supported types in th

  • CVE-2023-34966Jul 20, 2023
    affected < 4.15.13+git.663.9c654e06cdb-150300.3.57.5fixed 4.15.13+git.663.9c654e06cdb-150300.3.57.5

    An infinite loop vulnerability was found in Samba's mdssvc RPC service for Spotlight. When parsing Spotlight mdssvc RPC packets sent by the client, the core unmarshalling function sl_unpack_loop() did not validate a field in the network packet that contains the count of elements

  • CVE-2022-2127Jul 20, 2023
    affected < 4.15.13+git.663.9c654e06cdb-150300.3.57.5fixed 4.15.13+git.663.9c654e06cdb-150300.3.57.5

    An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbindd_pam_auth_crap.c. When performing NTLM authentication, the client replies to cryptographic challenges back to the server. These replies have variable lengths, and Winbind fails to

  • CVE-2023-0922Apr 3, 2023
    affected < 4.15.13+git.636.53d93c5b9d6-150300.3.52.1fixed 4.15.13+git.636.53d93c5b9d6-150300.3.52.1

    The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection.

  • CVE-2023-0614Apr 3, 2023
    affected < 4.15.13+git.636.53d93c5b9d6-150300.3.52.1fixed 4.15.13+git.636.53d93c5b9d6-150300.3.52.1

    The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC.

  • CVE-2023-0225Apr 3, 2023
    affected < 4.15.13+git.636.53d93c5b9d6-150300.3.52.1fixed 4.15.13+git.636.53d93c5b9d6-150300.3.52.1

    A flaw was found in Samba. An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory.

  • CVE-2021-20251Mar 6, 2023
    affected < 4.15.13+git.591.ab36624310c-150300.3.49.1fixed 4.15.13+git.591.ab36624310c-150300.3.49.1

    A flaw was found in samba. A race condition in the password lockout code may lead to the risk of brute force attacks being successful if special conditions are met.

  • CVE-2022-38023Nov 9, 2022
    affected < 4.15.13+git.540.fab3b2a46c6-150300.3.46.1fixed 4.15.13+git.540.fab3b2a46c6-150300.3.46.1

    Netlogon RPC Elevation of Privilege Vulnerability

  • CVE-2022-37967Nov 9, 2022
    affected < 4.15.13+git.540.fab3b2a46c6-150300.3.46.1fixed 4.15.13+git.540.fab3b2a46c6-150300.3.46.1

    Windows Kerberos Elevation of Privilege Vulnerability

  • CVE-2022-37966Nov 9, 2022
    affected < 4.15.13+git.540.fab3b2a46c6-150300.3.46.1fixed 4.15.13+git.540.fab3b2a46c6-150300.3.46.1

    Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability

  • CVE-2022-32746Aug 25, 2022
    affected < 4.15.13+git.636.53d93c5b9d6-150300.3.52.1fixed 4.15.13+git.636.53d93c5b9d6-150300.3.52.1

    A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module, resulting in a use-after-free issue. This issue is only possible when modifying certain privileged attributes, such as userAc