samba -- multiple vulnerabilities

ID 793A0072-7822-11E9-81E2-005056A311D1
Type freebsd
Reporter FreeBSD
Modified 2019-05-14T00:00:00


The samba project reports:

The checksum validation in the S4U2Self handler in the embedded Heimdal KDC did not first confirm that the checksum was keyed, allowing replacement of the requested target (client) principal

Authenticated users with write permission can trigger a symlink traversal to write or detect files outside the Samba share.