29 matches found
CLSA-2025-1764151714 Fix CVE(s): CVE-2020-10704
SECURITY UPDATE: stack memory exhaustion vulnerability - debian/patches/CVE-2020-10704.patch: fix vulnerability where a deeply nested filter in an unauthenticated LDAP search can exhaust the LDAP server's attack memory causing a SIGSEGV - CVE-2020-10704...
Mageia: Security Advisory (MGASA-2020-0205)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:1133-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:1948-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:2673-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization for ARM 64 3.0.6.0 : samba (EulerOS-SA-2020-2012)
According to the version of the samba packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - A flaw was found when using samba as an Active Directory Domain Controller. Due to the way samba handles certain requests ...
openSUSE Security Update : ldb / samba (openSUSE-2020-1313)
"This update for ldb, samba fixes the following issues : Changes in samba : - Update to samba 4.11.11 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; bso14364 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...
openSUSE: Security Advisory for ldb, (openSUSE-SU-2020:1313-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
EulerOS 2.0 SP8 : samba (EulerOS-SA-2020-1882)
According to the version of the samba packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found when using samba as an Active Directory Domain Controller. Due to the way samba handles certain requests as an Active Directory...
openSUSE Security Update : ldb / samba (openSUSE-2020-1023)
"This update for ldb, samba fixes the following issues : Changes in samba : - Update to samba 4.11.11 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; bso14364 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...
SUSE SLED15 / SLES15 Security Update : ldb, samba (SUSE-SU-2020:1948-1)
"This update for ldb, samba fixes the following issues : Changes in samba: Update to samba 4.11.11 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; bso14364 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted fr...
Samba DoS Vulnerability (CVE-2020-10704)
Samba is prone to a denial of service vulnerability. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 31 : 2:samba / libldb (2020-9cf0b1c8f1)
Update to Samba 4.11.8 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security,...
Fedora 30 : 2:samba / libldb (2020-e244c98af5)
Update to Samba 4.10.15 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security...
CVE-2020-10704
CVE-2020-10704 affects Samba acting as an Active Directory Domain Controller. The vulnerability is a stack overflow in the AD DC LDAP server triggered by certain requests, enabling an unauthorized user to cause a denial of service, impacting availability. Public disclosures in connected Debian Fe...
Fedora: Security Advisory for libldb (FEDORA-2020-c931060ab7)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : samba (openSUSE-2020-601)
This update for samba fixes the following issues : Security issue fixed : - CVE-2020-10704: Fixed a stack overflow in the AD DC CLDAP server bsc1169851. Non-security issues fixed : - Fixed spnego fallback from kerberos to ntlmssp in smbd server bsc1169473. - Fixed warning messages for non root...
openSUSE: Security Advisory for samba (openSUSE-SU-2020:0601-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for samba (important)
openSUSE Security Update: Security update for samba Announcement ID: openSUSE-SU-2020:0601-1 Rating: important References: 1167070 1169473 1169851 Cross-References: CVE-2020-10704 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has two fixes is now available...
Samba 4.10.x < 4.10.15 / 4.11.x < 4.11.8 / 4.12.x < 4.12.2 Multiple Vulnerabilities
The version of Samba running on the remote host is 4.10.x prior to 4.10.15, 4.11.x prior to 4.11.8, or 4.12.x prior to 4.12.2. It is, therefore, affected by the following vulnerabilities : - A flaw exists related to handling 'ASQ' and 'Paged Results' LDAP controls that could allow use-after-free...