35 matches found
CVE-2022-37966 vulnerabilities
Vulnerabilities for packages: samba...
CVE-2022-37966 vulnerabilities
Vulnerabilities for packages: samba...
Linux Distros Unpatched Vulnerability : CVE-2022-37966
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability CVE-2022-37966 Note that Nessus relies on the presence of the package as reported by the vendor...
Fedora 37 : samba (2022-cb92b4ea21)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-cb92b4ea21 advisory. Update to version 4.17.4 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
openSUSE: Security Advisory for samba (SUSE-SU-2023:0160-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for samba (SUSE-SU-2023:0222-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for samba (SUSE-SU-2023:0014-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2023-0010)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2023:0620-1 Security update for samba
This update for samba fixes the following issues: - CVE-2021-20251: Fixed bad password count that was not incremented atomically bsc1206546. - CVE-2022-38023: Fixed weak RC4/HMAC-MD5 NetLogon Secure Channel usage should be avoided bsc1206504. - CVE-2022-37966: Fixed privilege elevation...
SUSE: Security Advisory (SUSE-SU-2023:0222-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15: ctdb / ctdb-pcp-pmda / libsamba-policy-devel / etc (SUSE-SU-2023:0160-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0160-1 advisory. - CVE-2021-20251: Fixed an issue where the bad password count would not be properly incremented,...
Ubuntu: Security Advisory (USN-5822-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2023:0164-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2023:0163-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
November 8, 2022—KB5020009 (Monthly Rollup)
November 8, 2022—KB5020009 Monthly Rollup Summary Learn more about this cumulative security update, including improvements, any known issues, and how to get the update. REMINDER Windows Server 2012 has reached the end of mainstream support and is now in extended support. Starting in July 2020,...
November 8, 2022—KB5020003 (Security-only update)
November 8, 2022—KB5020003 Security-only update Summary Learn more about this security-only update, including improvements, any known issues, and how to get the update. REMINDERWindows Server 2012 has reached the end of mainstream support and is now in extended support. Starting in July 2020, the...
USN-5822-1 samba vulnerabilities
It was discovered that Samba incorrectly handled the bad password count logic. A remote attacker could possibly use this issue to bypass bad passwords lockouts. This issue was only addressed in Ubuntu 22.10. CVE-2021-20251 Evgeny Legerov discovered that Samba incorrectly handled buffers in certai...
SUSE: Security Advisory (SUSE-SU-2023:0122-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2023:0014-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Vulnerabilities fixed in Samba
Vulnerabilities have been fixed in Samba. The vulnerabilities allow a malicious party to obtain elevated privileges or to obtain sensitive data. The vulnerabilities marked CVE-2022-37966, CVE-2022-37967 and CVE-2022-38023 are vulnerabilities in RC4-HMAC that were previously fixed by Microsoft. Th...