331 matches found
ALPINE-CVE-2020-14323
A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service...
Null pointer dereference
A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service...
SUSE-SU-2020:3093-1 Security update for samba
This update for samba fixes the following issues: - CVE-2020-14383: An authenticated user can crash the DCE/RPC DNS with easily crafted records bsc1177613. - CVE-2020-14323: Unprivileged user can crash winbind bsc1173994. - CVE-2020-14318: Missing permissions check in SMB1/2/3 ChangeNotify...
CVE-2020-14323
A null pointer dereference flaw was found in Samba's winbind service. This flaw allows a local user to crash the winbind service, causing a denial of service. The highest threat from this vulnerability is to system availability...
SUSE-SU-2020:3082-1 Security update for samba
This update for samba fixes the following issues: - CVE-2020-14383: An authenticated user can crash the DCE/RPC DNS with easily crafted records bsc1177613. - CVE-2020-14323: Unprivileged user can crash winbind bsc1173994. - CVE-2020-14318: Missing permissions check in SMB1/2/3 ChangeNotify...
SUSE-SU-2020:3081-1 Security update for samba
This update for samba fixes the following issues: Update to samba 4.11.14 - CVE-2020-14383: An authenticated user can crash the DCE/RPC DNS with easily crafted records bsc1177613. - CVE-2020-14323: Unprivileged user can crash winbind bsc1173994. - CVE-2020-14318: Missing permissions check in...
CVE-2020-14323
A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service...
Security fix for the ALT Linux 10 package samba version 4.12.9-alt1
Oct. 29, 2020 Evgeny Sinelnikov 4.12.9-alt1 - Update to latest stable security release of the Samba 4.12 - Security fixes: + CVE-2020-14318: Missing handle permissions check in SMB1/2/3 ChangeNotify + CVE-2020-14323: Unprivileged user can crash winbind + CVE-2020-14383: An authenticated user can...
UBUNTU-CVE-2020-14323
A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service...
CVE-2020-14323
A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service...
PT-2020-6718 · Samba +9 · Samba +9
Name of the Vulnerable Software and Affected Versions: Samba versions prior to 4.11.15 Samba versions prior to 4.12.9 Samba versions prior to 4.13.1 Description: A null pointer dereference flaw was found in Samba's Winbind service. This issue allows an attacker to cause a denial of service. A loc...
CVE-2020-14323
A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service...
CVE-2020-14323
Affects Samba Winbind in Samba; root cause is a null pointer/invalid lookupsids path leading to a crash and DoS. Affected versions are prior to 4.11.15, prior to 4.12.9, and prior to 4.13.1. Remediation is to upgrade to a fixed Samba release (e.g., 4.13.x line such as 4.13.3 per AlmaLinux advisor...
CVE-2020-14323
A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service...
CVE-2020-14323
A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service...
Unprivileged user can crash winbind
Description winbind in version 3.6 and later implements a request to translate multiple Windows SIDs into names in one request. This was done for performance reasons: Active Directory domain controllers can do multiple SID to name translations in one RPC call. It was an obvious extension to also...
openSUSE Security Update : ldb / samba (openSUSE-2020-1313)
"This update for ldb, samba fixes the following issues : Changes in samba : - Update to samba 4.11.11 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; bso14364 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...
openSUSE Security Update : ldb / samba (openSUSE-2020-1023)
"This update for ldb, samba fixes the following issues : Changes in samba : - Update to samba 4.11.11 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; bso14364 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...
The vulnerability of the input tool provided by Astra Linux SE/CE in the MS Windows AD domain “astra-winbind” allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service interruptions.
The vulnerability of the Astra Linux SE/CE input device in MS Windows AD domain, known as astra-winbind, is related to a user login error. Exploiting this vulnerability can allow attackers to access confidential data, compromise its integrity, and cause service failures...
samba security, bug fix, and enhancement update
openchange 2.3-24.0.1 - Add patch to build against samba 4.11 2.3-24 - Rebuild for newer samba and libldb samba 4.11.2-13 - resolves: 1802182 - Fix join using netbios name 4.11.2-12 - related: 1781232 - Improve debug output of smbclient - resolves: 1794461 - Do not return bogus inode numbers in...