20 matches found
EulerOS Virtualization 2.13.0 : samba (EulerOS-SA-2025-2617)
According to the versions of the samba packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability has been found in Samba File Transfer Software the affected version is unknown and classified as critical.The CWE...
Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2025-2511)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP11 : samba (EulerOS-SA-2025-2471)
According to the versions of the samba packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Upstream Security Advisories: https://www.samba.org/samba/security/CVE-2007-2447.html https://www.samba.org/samba/security/CVE-2025-10230.html...
ROOT-OS-DEBIAN-12-CVE-2025-10230 CVE-2025-10230 in rootio-samba - Patched by Root
Root has patched CVE-2025-10230 in the rootio-samba package for Root:Debian:12. Multiple fixed versions available...
SUSE: Security Advisory (SUSE-SU-2025:21005-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 16 Security Update : samba (openSUSE-SU-2025-20048-1)
The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2025-20048-1 advisory. Update to 4.22.5: CVE-2025-10230: Command injection via WINS server hook script bsc1251280. CVE-2025-9640: uninitialized memory disclosure via...
OPENSUSE-SU-2025:20048-1 Security update for samba
This update for samba fixes the following issues: Update to 4.22.5: CVE-2025-10230: Command injection via WINS server hook script bsc1251280. CVE-2025-9640: uninitialized memory disclosure via vfsstreamsxattr bsc1251279. - Relax samba-gpupdate requirement for cepces, certmonger, and sscep to a...
SUSE-SU-2025:21005-1 Security update for samba
This update for samba fixes the following issues: Update to 4.22.5: CVE-2025-10230: Command injection via WINS server hook script bsc1251280. CVE-2025-9640: uninitialized memory disclosure via vfsstreamsxattr bsc1251279. - Relax samba-gpupdate requirement for cepces, certmonger, and sscep to a...
DEBIAN-CVE-2025-10230
A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without proper validation or escaping. Unsanitized NetBIOS name data from WINS registration packets are inserted into a shell command and executed by the Samba Active...
Fedora: Security Advisory (FEDORA-2025-c0830ff9f4)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-7826-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
K000157074: Samba vulnerability CVE-2025-10230
Security Advisory Description The cve record for the cve id does not exist. CVE-2025-10230 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5 Product Development has evaluated the currently supported releases for potential vulnerability, and...
SUSE SLES15: ctdb / libsamba-policy-devel / libsamba-policy-python3-devel / etc (SUSE-SU-2025:3677-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:3677-1 advisory. - CVE-2025-9640: Fixed vfsstreamsxattr uninitialized memory write bsc1251279. - CVE-2025-10230: Fixed command Injection in WINS...
SUSE: Security Advisory (SUSE-SU-2025:03612-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ctdb-4.22.5+git.431.dc5a539f124-1.1 on GA media (moderate)
ctdb-4.22.5+git.431.dc5a539f124-1.1 on GA media Announcement ID: openSUSE-SU-2025:15649-1 Rating: moderate Cross-References: CVE-2025-10230 CVE-2025-9640 CVSS scores: CVE-2025-10230 SUSE : 10 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H CVE-2025-9640 SUSE : 4.3...
SUSE SLED15: ctdb / ctdb-pcp-pmda / libsamba-policy-devel / etc (SUSE-SU-2025:03612-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03612-1 advisory. - CVE-2025-9640: Fixed uninitialized memory disclosure via vfsstreamsxattr bsc1251279. -...
Samba Command Injection Vulnerability (CVE-2025-10230)
Samba is prone to a command injection vulnerability via WINS server hook script. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Slackware: Security Advisory (SSA:2025-288-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[slackware-security] samba
New samba packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: extra/samba-4.22.5-i586-1slack15.0.txz: Upgraded. This is a security release in order to address the following defects: Uninitialized memory disclosure...
CVE-2025-10230
creationtimestamp| type| source ---|---|--- 2025-10-15 17:02:09+00:00| seen| https://seclists.org/oss-sec/2025/q4/46 2025-10-15 19:27:22+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3m3axyoockl23 2025-10-15 21:40:34+00:00| seen| https://seclists.org/oss-sec/2025/q4/48 2025-10-...