28 matches found
TencentOS Server 4: samba (TSSA-2025:0014)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0014 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
CLSA-2025-1737023462 samba: Fix of CVE-2023-3961
Fix CVE-2023-3961: fix path traversal vulnerability when processing client pipe names connecting to Unix domain sockets within a private directory...
openSUSE: Security Advisory for samba (SUSE-SU-2023:4046-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 8 : samba (ELSA-2023-7467)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-7467 advisory. - resolves: RHEL-11937 Fix CVE-2023-3961 - smbd must check the pipename - resolves: RHEL-11937 Fix CVE-2023-4091 - SMB clients can truncate files Tenab...
AlmaLinux 8 : samba (ALSA-2023:7467)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:7467 advisory. - A path traversal vulnerability was identified in Samba when processing client pipe names connecting to Unix domain sockets within a private directory...
CLSA-2023-1700852317 samba: Fix of CVE-2023-3961
CVE-2023-3961: Fix a path traversal out of the socket directory - fix chagelog's versions...
CLSA-2023-1700835779 Fix CVE(s): CVE-2023-3961
SECURITY UPDATE: open socket out of the dedicated directory - debian/patches/CVE-2023-3961.patch: prevents a traversal out the dedicated directory - CVE-2023-3961...
CLSA-2023-1700835091 Fix CVE(s): CVE-2023-3961
SECURITY UPDATE: open socket out of the dedicated directory - debian/patches/CVE-2023-3961.patch: prevents a traversal out the dedicated directory - CVE-2023-3961...
CLSA-2023-1700834882 samba: Fix of CVE-2023-3961
CVE-2023-3961: Fix a path traversal out of the socket directory...
CLSA-2023-1700833977 samba: Fix of CVE-2023-3961
CVE-2023-3961: Fix a path traversal out of the socket directory...
ALSA-2023:7467 Moderate: samba security update
Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fixes: samba: smbd allows client access to unix domain sockets ...
Moderate: Red Hat Security Advisory: samba security update
An update for samba is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...
samba security update
4.18.6-101 - resolves: RHEL-11937 Fix CVE-2023-3961 - smbd must check the pipename - resolves: RHEL-11937 Fix CVE-2023-4091 - SMB clients can truncate files - resolves: RHEL-11937 Fix CVE-2023-42669 - Remove rpcecho server...
Moderate: Red Hat Security Advisory: samba security update
An update for samba is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...
Moderate: samba security update
Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fixes: samba: smbd allows client access to unix domain sockets ...
CVE-2023-3961
creationtimestamp| type| source ---|---|--- 2023-11-03 15:23:35+00:00| seen| https://t.me/cibsecurity/73527...
AZL-31899 CVE-2023-3961 affecting package samba 4.12.5-7
A path traversal vulnerability was identified in Samba when processing client pipe names connecting to Unix domain sockets within a private directory. Samba typically uses this mechanism to connect SMB clients to remote procedure call RPC services like SAMR LSA or SPOOLSS, which Samba initiates o...
CVE-2023-3961
Samba (smbd) is affected by CVE-2023-3961 due to insufficient sanitization of client pipe names for Unix domain sockets, enabling a path traversal that could let a client connect as root to sockets outside the private directory. Exploitation details are not provided beyond this risk, but multiple...
CVE-2023-3961 Samba: smbd allows client access to unix domain sockets on the file system as root
A path traversal vulnerability was identified in Samba when processing client pipe names connecting to Unix domain sockets within a private directory. Samba typically uses this mechanism to connect SMB clients to remote procedure call RPC services like SAMR LSA or SPOOLSS, which Samba initiates o...
CVE-2023-3961
A path traversal vulnerability was identified in Samba when processing client pipe names connecting to Unix domain sockets within a private directory. Samba typically uses this mechanism to connect SMB clients to remote procedure call RPC services like SAMR LSA or SPOOLSS, which Samba initiates o...