6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.006 Low
EPSS
Percentile
78.2%
Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allows PC-compatible machines to share files, printers, and various information.
The Samba packages have been upgraded to upstream version 4.10.4, which provides a number of bug fixes and enhancements over the previous version. (BZ#1776952)
Security Fix(es):
samba: smb client vulnerable to filenames containing path separators (CVE-2019-10218)
samba: Crash after failed character conversion at log level 3 or above (CVE-2019-14907)
Bug Fix(es):
Users of Samba with Red Hat Gluster Storage are advised to upgrade to these updated packages
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 7 | x86_64 | libtalloc | < 2.2.0-9.el7rhgs | libtalloc-2.2.0-9.el7rhgs.x86_64.rpm |
RedHat | 7 | x86_64 | samba-client-libs | < 4.11.6-104.el7rhgs | samba-client-libs-4.11.6-104.el7rhgs.x86_64.rpm |
RedHat | 7 | x86_64 | python3-samba | < 4.11.6-104.el7rhgs | python3-samba-4.11.6-104.el7rhgs.x86_64.rpm |
RedHat | 7 | x86_64 | libtalloc-devel | < 2.2.0-9.el7rhgs | libtalloc-devel-2.2.0-9.el7rhgs.x86_64.rpm |
RedHat | 7 | x86_64 | libtevent | < 0.10.0-4.el7rhgs | libtevent-0.10.0-4.el7rhgs.x86_64.rpm |
RedHat | 7 | x86_64 | samba | < 4.11.6-104.el7rhgs | samba-4.11.6-104.el7rhgs.x86_64.rpm |
RedHat | 7 | x86_64 | libtdb | < 1.4.2-4.el7rhgs | libtdb-1.4.2-4.el7rhgs.x86_64.rpm |
RedHat | 7 | x86_64 | samba-krb5-printing | < 4.11.6-104.el7rhgs | samba-krb5-printing-4.11.6-104.el7rhgs.x86_64.rpm |
RedHat | 7 | x86_64 | samba-winbind-clients | < 4.11.6-104.el7rhgs | samba-winbind-clients-4.11.6-104.el7rhgs.x86_64.rpm |
RedHat | 7 | x86_64 | libtevent-devel | < 0.10.0-4.el7rhgs | libtevent-devel-0.10.0-4.el7rhgs.x86_64.rpm |
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.006 Low
EPSS
Percentile
78.2%