SUSE CVE-2025-10230

A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without proper validation or escaping. Unsanitized NetBIOS name data from WINS registration packets are inserted into a shell command and executed by the Samba Active...

ROS-20251001-04

A vulnerability in the gnutlsrnd function of the Samba networking software package is related to the use of insufficiently random values. insufficiently randomized values. Exploitation of the vulnerability could allow an attacker to gain access to confidential data...

ROS-20250923-15

Vulnerability of LDAP protocol implementation of Samba networking software package is related to flaws in access control list ACL based access delimitation. Exploitation of the vulnerability could allow an attacker acting remotely to escalate privileges...

CVE-2025-0620 Samba: smbd doesn't pick up group membership changes when re-authenticating an expired smb session

A flaw was found in Samba. The smbd service daemon does not pick up group membership changes when re-authenticating an expired SMB session. This issue can expose file shares until clients disconnect and then connect again...

Advisory ROSA-SA-2025-2694

Software: samba 4.17.12 OS: ROSA Virtualization 3.0 packageevrstring: samba-4.17.12 CVE-ID: CVE-2022-38023 BDU-ID: 2022-06830 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Netlogon Remote Protocol MS-NRPC implementation of Windows operating systems is due to errors in security settings...

The vulnerability of the LDAP protocol implementation in the Samba network communication software allows a hacker to increase their privileges.

The vulnerability of the LDAP protocol implementation in the Samba network communication software package is related to deficiencies in access control based on Access Control Lists ACLs. Exploiting this vulnerability allows a malicious actor to enhance their privileges remotely...

The vulnerability of the gnutls_rnd() function in the Samba networking software package, related to the use of insufficiently random values, allows a attacker to access confidential data.

The vulnerability of the gnutlsrnd function in the Samba networking software package is related to the use of insufficiently random values. Exploiting this vulnerability could allow an attacker to gain access to confidential data...

RHSA-2004:064 Red Hat Security Advisory: samba security update

Bulletin has no description...

The vulnerability of the SMB2 packet signing mechanism in the Samba networking communication software allows a attacker to execute a type of “man-in-the-middle” attack.

The vulnerability of the SMB2 packet signing mechanism in the Samba network communication software is related to insufficient verification of data authenticity. Exploiting this vulnerability allows a malicious actor to act remotely...

The vulnerability of the RPC server of the Samba networking communication software allows a attacker to trigger a service failure.

The vulnerability of the Samba networking communication server RPC server is related to the improper release of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the DirSync synchronization mechanism in the Samba networking communication software package allows a intruder to gain unauthorized access to protected information and enhance their privileges.

The vulnerability of the DirSync synchronization mechanism in the Samba networking communication software package is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information and...

PT-2023-6233 · Samba +7 · Samba +7

Name of the Vulnerable Software and Affected Versions: Samba affected versions not specified Description: A design flaw was found in Samba's DirSync control implementation, which exposes passwords and secrets in Active Directory to privileged users and Read-Only Domain Controllers RODCs. This fla...

DSA-5477-1 samba - security update

Bulletin has no description...

AZL-26215 CVE-2023-0922 affecting package samba 4.12.5-7

The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection...

SUSE-SU-2023:1687-1 Security update for ldb, samba

This update for ldb, samba fixes the following issues: ldb: - CVE-2022-32746: Fixed an use-after-free issue in the database audit logging module bsc1201490. - CVE-2023-0614: Fixed discovering of access controlled AD LDAP attributes bso15270 bsc1209485. samba: - CVE-2023-0922: Fixed cleartext...

SUSE CVE-2016-2111

The NETLOGON service in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2, when a domain controller is configured, allows remote attackers to spoof the computer name of a secure channel's endpoint, and obtain sensitive session information, by running a crafted applicatio...

SUSE CVE-2016-2114

The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "server signing = mandatory" setting, which allows man-in-the-middle attackers to spoof SMB servers by modifying the client-server data stream...

DEBIAN-CVE-2022-3437

A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrapdes and unwrapdes3 routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc allocated memory when presented with a...

The vulnerabilities of the unwrap_des() and unwrap_des3() functions in the GSSAPI library of the Heimdal package for Samba’s network communication software are exposed.

The vulnerability of the unwrapdes and unwrapdes3 functions in the GSSAPI library of the Heimdal package related to buffer overflow in the stack. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerabilities of DCE/RPC components in Samba’s network communication software package allow attackers to compromise data integrity.

The vulnerability of DCE/RPC components in Samba’s networking communication software lies in the insufficient neutralization of certain elements in requests. Exploiting this vulnerability allows a remote attacker to compromise data integrity...