The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC.
CPE | Name | Operator | Version |
---|---|---|---|
samba | ge | 4.17.0 | |
samba | lt | 4.17.7 | |
samba | ge | 4.0.0 | |
samba | lt | 4.16.10 | |
samba | eq | 4.18.0 | |
samba | eq | 4.18.0 rc1 | |
samba | eq | 4.18.0 rc3 | |
samba | eq | 4.18.0 rc4 | |
samba | eq | 4.18.0 rc2 |