CVE-2022-37967 vulnerabilities

Vulnerabilities for packages: samba...

CVE-2022-37967 vulnerabilities

Vulnerabilities for packages: samba...

Linux Distros Unpatched Vulnerability : CVE-2022-37967

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Windows Kerberos Elevation of Privilege Vulnerability CVE-2022-37967 Note that Nessus relies on the presence of the package as reported by the vendor...

Fedora 37 : samba (2022-cb92b4ea21)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-cb92b4ea21 advisory. Update to version 4.17.4 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

openSUSE: Security Advisory for samba (SUSE-SU-2023:0014-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for samba (SUSE-SU-2023:0160-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

krb5 bug fix update

An update is available for krb5. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Kerberos is a network authentication system, which can improve the security of...

Windows Kerberos Elevation of Privilege Vulnerability (CVE-2022-37967) (November 2022)

The remote Windows host is missing a security update. It is, therefore, affected by a Windows Kerberos Elevation of Privilege Vulnerability CVE-2022-37967 %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid176328; scriptversion"1.7";...

Mageia: Security Advisory (MGASA-2023-0010)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-5822-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : samba (SUSE-SU-2023:0160-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0160-1 advisory. - A flaw was found in samba. A race condition in the password lockout code may lead to the risk ...

November 8, 2022—KB5020009 (Monthly Rollup)

November 8, 2022—KB5020009 Monthly Rollup Summary Learn more about this cumulative security update, including improvements, any known issues, and how to get the update. REMINDER Windows Server 2012 has reached the end of mainstream support and is now in extended support. Starting in July 2020,...

November 8, 2022—KB5020003 (Security-only update)

November 8, 2022—KB5020003 Security-only update Summary Learn more about this security-only update, including improvements, any known issues, and how to get the update. REMINDERWindows Server 2012 has reached the end of mainstream support and is now in extended support. Starting in July 2020, the...

USN-5822-1 samba vulnerabilities

It was discovered that Samba incorrectly handled the bad password count logic. A remote attacker could possibly use this issue to bypass bad passwords lockouts. This issue was only addressed in Ubuntu 22.10. CVE-2021-20251 Evgeny Legerov discovered that Samba incorrectly handled buffers in certai...

SUSE: Security Advisory (SUSE-SU-2023:0014-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware: Security Advisory (SSA:2022-351-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Vulnerabilities fixed in Samba

Vulnerabilities have been fixed in Samba. The vulnerabilities allow a malicious party to obtain elevated privileges or to obtain sensitive data. The vulnerabilities marked CVE-2022-37966, CVE-2022-37967 and CVE-2022-38023 are vulnerabilities in RC4-HMAC that were previously fixed by Microsoft. Th...

[slackware-security] samba

New samba packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/samba-4.15.13-i586-1slack15.0.txz: Upgraded. This update fixes security issues: This is the Samba CVE for the Windows Kerberos RC4-HMAC...

Samba Issues Security Updates to Patch Multiple High-Severity Vulnerabilities

Samba has released software updates to remediate multiple vulnerabilities that, if successfully exploited, could allow an attacker to take control of affected systems. The high-severity flaws, tracked as CVE-2022-38023, CVE-2022-37966, CVE-2022-37967, and CVE-2022-45141, have been patched in...

CVE-2022-37967

Windows Kerberos Elevation of Privilege Vulnerability...