Unprivileged adding of CNAME record causing loop in AD Internal DNS server

ID SAMBA:CVE-2018-14629
Type samba
Reporter Samba
Modified 2018-11-27T00:00:00


All versions of Samba from 4.0.0 onwards are vulnerable to infinite query recursion caused by CNAME loops. Any dns record can be added via ldap by an unprivileged user using the ldbadd tool, so this is a security issue.