Lucene search
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLELINUX_ELSA-2020-1878.NASLHistorySep 07, 2023 - 12:00 a.m.
Oracle Linux 8 : samba (ELSA-2020-1878)
2023-09-0700:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
4
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1878 advisory.
-
A flaw was found in samba versions 4.9.x up to 4.9.13, samba 4.10.x up to 4.10.8 and samba 4.11.x up to 4.11.0rc3, when certain parameters were set in the samba configuration file. An unauthenticated attacker could use this flaw to escape the shared directory and access the contents of directories outside the share. (CVE-2019-10197)
-
A flaw was found in the samba client, all samba versions before samba 4.11.2, 4.10.10 and 4.9.15, where a malicious server can supply a pathname to the client with separators. This could allow the client to access files and folders outside of the SMB network pathnames. An attacker could use this vulnerability to create files outside of the current working directory using the privileges of the client user.
(CVE-2019-10218) -
All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an issue where if it is set with log level = 3 (or above) then the string obtained from the client, after a failed character conversion, is printed. Such strings can be provided during the NTLMSSP authentication exchange.
In the Samba AD DC in particular, this may cause a long-lived process(such as the RPC server) to terminate. (In the file server case, the most likely target, smbd, operates as process-per-client and so a crash there is harmless). (CVE-2019-14907)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Oracle Linux Security Advisory ELSA-2020-1878.
##
include('compat.inc');
if (description)
{
script_id(180910);
script_version("1.0");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/09/07");
script_cve_id("CVE-2019-10197", "CVE-2019-10218", "CVE-2019-14907");
script_xref(name:"IAVA", value:"2019-A-0318-S");
script_xref(name:"IAVA", value:"2019-A-0407-S");
script_xref(name:"IAVA", value:"2020-A-0035-S");
script_name(english:"Oracle Linux 8 : samba (ELSA-2020-1878)");
script_set_attribute(attribute:"synopsis", value:
"The remote Oracle Linux host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the
ELSA-2020-1878 advisory.
- A flaw was found in samba versions 4.9.x up to 4.9.13, samba 4.10.x up to 4.10.8 and samba 4.11.x up to
4.11.0rc3, when certain parameters were set in the samba configuration file. An unauthenticated attacker
could use this flaw to escape the shared directory and access the contents of directories outside the
share. (CVE-2019-10197)
- A flaw was found in the samba client, all samba versions before samba 4.11.2, 4.10.10 and 4.9.15, where a
malicious server can supply a pathname to the client with separators. This could allow the client to
access files and folders outside of the SMB network pathnames. An attacker could use this vulnerability to
create files outside of the current working directory using the privileges of the client user.
(CVE-2019-10218)
- All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an issue where
if it is set with log level = 3 (or above) then the string obtained from the client, after a failed
character conversion, is printed. Such strings can be provided during the NTLMSSP authentication exchange.
In the Samba AD DC in particular, this may cause a long-lived process(such as the RPC server) to
terminate. (In the file server case, the most likely target, smbd, operates as process-per-client and so a
crash there is harmless). (CVE-2019-14907)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://linux.oracle.com/errata/ELSA-2020-1878.html");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-10197");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/09/03");
script_set_attribute(attribute:"patch_publication_date", value:"2020/05/05");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/09/07");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:8");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ctdb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ctdb-tests");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libsmbclient");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libsmbclient-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libwbclient");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libwbclient-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:openchange");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python3-samba");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python3-samba-test");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba-client");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba-client-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba-common-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba-common-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba-krb5-printing");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba-pidl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba-test");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba-test-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba-winbind");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba-winbind-clients");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba-winbind-krb5-locator");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:samba-winbind-modules");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Oracle Linux Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/local_checks_enabled");
exit(0);
}
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item('Host/OracleLinux')) audit(AUDIT_OS_NOT, 'Oracle Linux');
var os_release = get_kb_item("Host/RedHat/release");
if (isnull(os_release) || !pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux)", string:os_release)) audit(AUDIT_OS_NOT, 'Oracle Linux');
var os_ver = pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\.[0-9]+)?)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Oracle Linux');
os_ver = os_ver[1];
if (! preg(pattern:"^8([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, 'Oracle Linux 8', 'Oracle Linux ' + os_ver);
if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Oracle Linux', cpu);
var pkgs = [
{'reference':'samba-common-4.11.2-13.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-pidl-4.11.2-13.el8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'ctdb-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'ctdb-tests-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsmbclient-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsmbclient-devel-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libwbclient-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libwbclient-devel-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'openchange-2.3-24.0.1.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python3-samba-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python3-samba-test-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-client-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-client-libs-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-common-libs-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-common-tools-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-krb5-printing-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-libs-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-test-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-test-libs-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-winbind-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-winbind-clients-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-winbind-krb5-locator-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-winbind-modules-4.11.2-13.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsmbclient-4.11.2-13.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsmbclient-devel-4.11.2-13.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libwbclient-4.11.2-13.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libwbclient-devel-4.11.2-13.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'openchange-2.3-24.0.1.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python3-samba-4.11.2-13.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-client-libs-4.11.2-13.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-libs-4.11.2-13.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-winbind-modules-4.11.2-13.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'ctdb-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'ctdb-tests-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsmbclient-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libsmbclient-devel-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libwbclient-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libwbclient-devel-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'openchange-2.3-24.0.1.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python3-samba-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python3-samba-test-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-client-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-client-libs-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-common-libs-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-common-tools-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-krb5-printing-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-libs-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-test-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-test-libs-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-winbind-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-winbind-clients-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-winbind-krb5-locator-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'samba-winbind-modules-4.11.2-13.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}
];
var flag = 0;
foreach var package_array ( pkgs ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
var exists_check = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = 'EL' + package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
if (reference && _release) {
if (exists_check) {
if (rpm_exists(release:_release, rpm:exists_check) && rpm_check(release:_release, sp:sp, cpu:cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
} else {
if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
}
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'ctdb / ctdb-tests / libsmbclient / etc');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| oracle | linux | 8 | cpe:/o:oracle:linux:8 |
| oracle | linux | ctdb | p-cpe:/a:oracle:linux:ctdb |
| oracle | linux | ctdb-tests | p-cpe:/a:oracle:linux:ctdb-tests |
| oracle | linux | libsmbclient | p-cpe:/a:oracle:linux:libsmbclient |
| oracle | linux | libsmbclient-devel | p-cpe:/a:oracle:linux:libsmbclient-devel |
| oracle | linux | libwbclient | p-cpe:/a:oracle:linux:libwbclient |
| oracle | linux | libwbclient-devel | p-cpe:/a:oracle:linux:libwbclient-devel |
| oracle | linux | openchange | p-cpe:/a:oracle:linux:openchange |
| oracle | linux | python3-samba | p-cpe:/a:oracle:linux:python3-samba |
| oracle | linux | python3-samba-test | p-cpe:/a:oracle:linux:python3-samba-test |
Related
oraclelinux
oraclelinux
samba security, bug fix, and enhancement update
2020-05-05 00:00:00
samba security, bug fix, and enhancement update
2020-04-06 00:00:00
samba security, bug fix, and enhancement update
2020-10-06 00:00:00
nessus
nessus
RHEL 8 : samba (RHSA-2020:1878)
2020-11-18 00:00:00
CentOS 8 : samba (CESA-2020:1878)
2021-02-01 00:00:00
RHEL 7 : samba (RHSA-2020:0943)
2020-03-24 00:00:00
redhat
redhat
(RHSA-2020:1878) Moderate: samba security, bug fix, and enhancement update
2020-04-28 09:26:30
(RHSA-2020:0943) Moderate: samba security and bug fix update
2020-03-23 13:41:48
(RHSA-2020:1084) Moderate: samba security, bug fix, and enhancement update
2020-03-31 09:16:36
centos
centos
ctdb, libsmbclient, libwbclient, samba security update
2020-04-08 19:18:01
ctdb, libsmbclient, libwbclient, samba security update
2020-10-20 18:56:03
amazon
amazon
redhatcve
redhatcve
ibm
ibm
f5
f5
K95010211 : Samba vulnerability CVE-2019-14907
2020-03-30 00:00:00
K69511801 : Samba vulnerability CVE-2019-10197
2019-09-26 00:00:00
osv
osv
ubuntucve
ubuntucve
cve
cve
samba
samba
Client code can return filenames containing
2019-10-29 00:00:00
Crash after failed character conversion at
2020-01-21 00:00:00
Combination of parameters and permissions can allow user
2019-09-03 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:2893-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:2875-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:2890-1)
2021-04-19 00:00:00
prion
prion
Design/Logic Flaw
2019-11-06 10:15:00
Design/Logic Flaw
2020-01-21 18:15:00
Code injection
2019-09-03 15:15:00
alpinelinux
alpinelinux
veracode
veracode
Denial Of Service (DoS)
2020-08-06 21:39:04
Privilege Escalation
2020-08-06 21:28:32
Sandbox Restrictions Bypass
2019-10-31 00:18:07
debiancve
debiancve
suse
suse
Security update for samba (moderate)
2019-09-17 00:00:00
Security update for samba (moderate)
2020-01-29 00:00:00
Security update for samba (important)
2019-11-09 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: libtevent-0.10.1-1.fc31
2019-09-21 00:04:33
[SECURITY] Fedora 31 Update: libtalloc-2.3.0-1.fc31
2019-09-21 00:04:33
[SECURITY] Fedora 31 Update: libldb-2.0.7-1.fc31
2019-09-21 00:04:33
ubuntu
ubuntu
Samba vulnerability
2019-09-03 00:00:00
Samba vulnerabilities
2019-10-29 00:00:00
Samba vulnerabilities
2020-01-21 00:00:00
symantec
symantec
Samba CVE-2019-10218 Path Traversal Arbitrary File Write Vulnerability
2019-10-29 00:00:00
Samba CVE-2019-10197 Privilege Escalation Vulnerability
2019-09-03 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package samba version 4.9.13-alt1
2019-09-27 00:00:00
Security fix for the ALT Linux 8 package samba-DC version 4.9.13-alt1
2019-09-27 00:00:00
Security fix for the ALT Linux 10 package samba version 4.10.8-alt1
2019-09-03 00:00:00
debian
debian
[SECURITY] [DSA 4513-1] samba security update
2019-09-03 21:22:58
[SECURITY] [DSA 4513-1] samba security update
2019-09-03 21:22:40
[SECURITY] [DLA 3563-1] samba security update
2023-09-14 14:43:46
freebsd
freebsd
samba -- combination of parameters and permissions can allow user to escape from the share path definition
2019-09-01 00:00:00
samba -- multiple vulnerabilities
2020-01-14 00:00:00
samba -- multiple vulnerabilities
2019-09-29 00:00:00
cisa
cisa
Samba Releases Security Updates
2019-09-04 00:00:00
Samba Releases Security Updates
2019-10-29 00:00:00
Samba Releases Security Updates
2020-01-21 00:00:00
mageia
mageia
Updated samba packages fix security vulnerabilities
2020-01-28 10:52:40
Updated samba packages fix security vulnerabilities
2019-09-21 19:04:55
archlinux
archlinux
[ASA-201911-6] samba: multiple issues
2019-11-03 00:00:00
Related for ORACLELINUX_ELSA-2020-1878.NASL