rpm package

suse/samba&distro=SUSE Linux Enterprise Server 12 SP3

pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3

Vulnerabilities (11)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2019-3880		—	< 4.6.16+git.154.2998451b912-3.40.3	4.6.16+git.154.2998451b912-3.40.3	Apr 9, 2019	A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. An unprivileged attacker could use this flaw to create a new registry hive file anywhere they have unix permissions which could lead to creation of a new file in the Samba sh
CVE-2018-10919		—	< 4.6.16+git.124.aee309c5c18-3.32.1	4.6.16+git.124.aee309c5c18-3.32.1	Aug 22, 2018	The Samba Active Directory LDAP server was vulnerable to an information disclosure flaw because of missing access control checks. An authenticated attacker could use this flaw to extract confidential attribute values using LDAP search expressions. Samba versions before 4.6.16, 4.
CVE-2018-10858		—	< 4.6.14+git.157.c2d53c2b191-3.29.1	4.6.14+git.157.c2d53c2b191-3.29.1	Aug 22, 2018	A heap-buffer overflow was found in the way samba clients processed extra long filename in a directory listing. A malicious samba server could use this flaw to cause arbitrary code execution on a samba client. Samba versions before 4.6.16, 4.7.9 and 4.8.4 are vulnerable.
CVE-2017-12151		—	< 4.6.7+git.51.327af8d0a11-3.12.1	4.6.7+git.51.327af8d0a11-3.12.1	Jul 27, 2018	A flaw was found in the way samba client before samba 4.4.16, samba 4.5.14 and samba 4.6.8 used encryption with the max protocol set as SMB3. The connection could lose the requirement for signing and encrypting to any DFS redirects, allowing an attacker to read or alter the conte
CVE-2017-12150		—	< 4.6.7+git.51.327af8d0a11-3.12.1	4.6.7+git.51.327af8d0a11-3.12.1	Jul 26, 2018	It was found that samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8 did not enforce "SMB signing" when certain configuration options were enabled. A remote attacker could launch a man-in-the-middle attack and retrieve information in plain-text.
CVE-2017-12163		—	< 4.6.7+git.51.327af8d0a11-3.12.1	4.6.7+git.51.327af8d0a11-3.12.1	Jul 26, 2018	An information leak flaw was found in the way SMB1 protocol was implemented by Samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8. A malicious client could use this flaw to dump server memory contents to a file on the samba share or to a shared printer, though the e
CVE-2018-1057		—	< 4.6.14+git.150.1540e575faf-3.24.1	4.6.14+git.150.1540e575faf-3.24.1	Mar 13, 2018	On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly validates permissions to modify passwords over LDAP allowing authenticated users to change any other users' passwords, including administrative users and privileged service accounts (eg Dom
CVE-2018-1050		—	< 4.6.13+git.72.2a684235f41-3.21.3	4.6.13+git.72.2a684235f41-3.21.3	Mar 13, 2018	All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler s
CVE-2017-15275	Hig	7.5	< 4.6.9+git.59.c2cff9cea4c-3.17.1	4.6.9+git.59.c2cff9cea4c-3.17.1	Nov 27, 2017	Samba before 4.7.3 might allow remote attackers to obtain sensitive information by leveraging failure of the server to clear allocated heap memory.
CVE-2017-14746	Cri	9.8	< 4.6.9+git.59.c2cff9cea4c-3.17.1	4.6.9+git.59.c2cff9cea4c-3.17.1	Nov 27, 2017	Use-after-free vulnerability in Samba 4.x before 4.7.3 allows remote attackers to execute arbitrary code via a crafted SMB1 request.
CVE-2017-11103	Hig	8.1	< 4.6.7+git.38.90b2cdb4f22-3.7.1	4.6.7+git.38.90b2cdb4f22-3.7.1	Jul 13, 2017	Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification. In _krb5_extract_ticket() the KDC-REP service name must be obtained from the encr

CVE-2019-3880Apr 9, 2019
affected < 4.6.16+git.154.2998451b912-3.40.3fixed 4.6.16+git.154.2998451b912-3.40.3
A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. An unprivileged attacker could use this flaw to create a new registry hive file anywhere they have unix permissions which could lead to creation of a new file in the Samba sh
CVE-2018-10919Aug 22, 2018
affected < 4.6.16+git.124.aee309c5c18-3.32.1fixed 4.6.16+git.124.aee309c5c18-3.32.1
The Samba Active Directory LDAP server was vulnerable to an information disclosure flaw because of missing access control checks. An authenticated attacker could use this flaw to extract confidential attribute values using LDAP search expressions. Samba versions before 4.6.16, 4.
CVE-2018-10858Aug 22, 2018
affected < 4.6.14+git.157.c2d53c2b191-3.29.1fixed 4.6.14+git.157.c2d53c2b191-3.29.1
A heap-buffer overflow was found in the way samba clients processed extra long filename in a directory listing. A malicious samba server could use this flaw to cause arbitrary code execution on a samba client. Samba versions before 4.6.16, 4.7.9 and 4.8.4 are vulnerable.
CVE-2017-12151Jul 27, 2018
affected < 4.6.7+git.51.327af8d0a11-3.12.1fixed 4.6.7+git.51.327af8d0a11-3.12.1
A flaw was found in the way samba client before samba 4.4.16, samba 4.5.14 and samba 4.6.8 used encryption with the max protocol set as SMB3. The connection could lose the requirement for signing and encrypting to any DFS redirects, allowing an attacker to read or alter the conte
CVE-2017-12150Jul 26, 2018
affected < 4.6.7+git.51.327af8d0a11-3.12.1fixed 4.6.7+git.51.327af8d0a11-3.12.1
It was found that samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8 did not enforce "SMB signing" when certain configuration options were enabled. A remote attacker could launch a man-in-the-middle attack and retrieve information in plain-text.
CVE-2017-12163Jul 26, 2018
affected < 4.6.7+git.51.327af8d0a11-3.12.1fixed 4.6.7+git.51.327af8d0a11-3.12.1
An information leak flaw was found in the way SMB1 protocol was implemented by Samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8. A malicious client could use this flaw to dump server memory contents to a file on the samba share or to a shared printer, though the e
CVE-2018-1057Mar 13, 2018
affected < 4.6.14+git.150.1540e575faf-3.24.1fixed 4.6.14+git.150.1540e575faf-3.24.1
On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly validates permissions to modify passwords over LDAP allowing authenticated users to change any other users' passwords, including administrative users and privileged service accounts (eg Dom
CVE-2018-1050Mar 13, 2018
affected < 4.6.13+git.72.2a684235f41-3.21.3fixed 4.6.13+git.72.2a684235f41-3.21.3
All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler s
CVE-2017-15275HigNov 27, 2017
affected < 4.6.9+git.59.c2cff9cea4c-3.17.1fixed 4.6.9+git.59.c2cff9cea4c-3.17.1
Samba before 4.7.3 might allow remote attackers to obtain sensitive information by leveraging failure of the server to clear allocated heap memory.
CVE-2017-14746CriNov 27, 2017
affected < 4.6.9+git.59.c2cff9cea4c-3.17.1fixed 4.6.9+git.59.c2cff9cea4c-3.17.1
Use-after-free vulnerability in Samba 4.x before 4.7.3 allows remote attackers to execute arbitrary code via a crafted SMB1 request.
CVE-2017-11103HigJul 13, 2017
affected < 4.6.7+git.38.90b2cdb4f22-3.7.1fixed 4.6.7+git.38.90b2cdb4f22-3.7.1
Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification. In _krb5_extract_ticket() the KDC-REP service name must be obtained from the encr