24 matches found
MiracleLinux 8 : libldb-2.1.3-2.el8 (AXSA:2020-1023:03)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-1023:03 advisory. samba: NULL pointer de-reference and use-after-free in Samba AD DC LDAP Server with ASQ, VLV and pagedresults CVE-2020-10730 Tenable has extracted the...
Huawei EulerOS: Security Advisory for libldb (EulerOS-SA-2025-1476)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libldb (EulerOS-SA-2025-1447)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libldb (EulerOS-SA-2024-2706)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libldb (EulerOS-SA-2024-2396)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2022-2401)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RHEL 7 : libldb (RHSA-2021:2786)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2786 advisory. The libldb packages provide an extensible library that implements an LDAP-like API to access remote LDAP servers, or use local TDB databases. Securit...
RHEL 8 : libldb (RHSA-2021:1197)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:1197 advisory. The libldb packages provide an extensible library that implements an LDAP-like API to access remote LDAP servers, or use local TDB databases. Securit...
RHEL 8 : libldb (RHSA-2021:1213)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:1213 advisory. The libldb packages provide an extensible library that implements an LDAP-like API to access remote LDAP servers, or use local TDB databases. Securit...
Important: libldb security update
The libldb packages provide an extensible library that implements an LDAP-like API to access remote LDAP servers, or use local TDB databases. Security Fixes: samba: Out of bounds read in AD DC LDAP server CVE-2021-20277 For more details about the security issues, including the impact, a CVSS scor...
Oracle Linux 8 : libldb (ELSA-2021-1197)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-1197 advisory. 2.1.3-3 - resolves: rhbz1941514 - Fix CVE-2021-20277 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Not...
Security fix for the ALT Linux 10 package samba version 4.14.2-alt1
March 25, 2021 Evgeny Sinelnikov 4.14.2-alt1 - Update to latest stable security release of the Samba 4.14 - Security fixes: + CVE-2020-27840: Heap corruption via crafted DN strings + CVE-2021-20277: Out of bounds read in AD DC LDAP server...
OPENSUSE-SU-2020:1121-1 Security update for ldb
This update for ldb fixes the following issues: - CVE-2020-10730: Fixed a null de-reference in AD DC LDAP server when ASQ and VLV combined bsc1173159. This update was imported from the SUSE:SLE-15-SP1:Update update project...
SUSE SLED15 / SLES15 Security Update : ldb (SUSE-SU-2020:2067-1)
This update for ldb fixes the following issues : CVE-2020-10730: Fixed a null de-reference in AD DC LDAP server when ASQ and VLV combined bsc1173159. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...
MGASA-2019-0397 Updated samba packages fix security vulnerabilities
Updated samba packages fix security vulnerabilities: Malicious servers can cause Samba client code to return filenames containing path separators to calling code CVE-2019-10218. When the password contains multi-byte non-ASCII characters, the check password script does not receive the full passwor...
CVE-2019-14847
CVE-2019-14847 affects Samba; versions 4.0.0 to before 4.9.15 and 4.10.x up to before 4.10.10 are vulnerable. An attacker can crash the AD DC LDAP server via dirsync, causing denial of service. Privilege escalation is not possible. Remediation: upgrade to Samba 4.9.15 or 4.10.10 (or later) as ind...
openSUSE Security Update : samba (openSUSE-2019-2442)
This update for provides the following fixes : Following security issues were fixed : - CVE-2019-14847: User with 'get changes' permission could have crashed AD DC LDAP server via dirsync bsc1154598. - CVE-2019-10218: Client code could have returned filenames containing path separators bsc1144902...
FreeBSD : samba -- multiple vulnerabilities (50a1bbc9-fb80-11e9-9e70-005056a311d1)
The samba project reports : Malicious servers can cause Samba client code to return filenames containing path separators to calling code. When the password contains multi-byte non-ASCII characters, the check password script does not receive the full password string. Users with the 'get changes'...
SUSE SLED15 / SLES15 Security Update : samba (SUSE-SU-2019:2866-1)
This update for provides the following fixes : Following security issues were fixed : CVE-2019-14847: User with 'get changes' permission could have crashed AD DC LDAP server via dirsync bsc1154598. CVE-2019-10218: Client code could have returned filenames containing path separators bsc1144902...
SUSE-SU-2019:2868-1 Security update for samba
This update for samba fixes the following issues: Security issues fixed: - CVE-2019-14847: User with 'get changes' permission can crash AD DC LDAP server via dirsync bsc1154598. - CVE-2019-10218: Client code can return filenames containing path separators bsc1144902. - CVE-2019-14833: Fixed Accen...