11 matches found
RHEL 7 : libldb (RHSA-2021:2786)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2786 advisory. The libldb packages provide an extensible library that implements an LDAP-like API to access remote LDAP servers, or use local TDB databases. Securit...
RHEL 8 : libldb (RHSA-2021:1213)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:1213 advisory. The libldb packages provide an extensible library that implements an LDAP-like API to access remote LDAP servers, or use local TDB databases. Securit...
RHEL 8 : libldb (RHSA-2021:1197)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:1197 advisory. The libldb packages provide an extensible library that implements an LDAP-like API to access remote LDAP servers, or use local TDB databases. Securit...
Important: libldb security update
The libldb packages provide an extensible library that implements an LDAP-like API to access remote LDAP servers, or use local TDB databases. Security Fixes: samba: Out of bounds read in AD DC LDAP server CVE-2021-20277 For more details about the security issues, including the impact, a CVSS scor...
Oracle Linux 8 : libldb (ELSA-2021-1197)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-1197 advisory. 2.1.3-3 - resolves: rhbz1941514 - Fix CVE-2021-20277 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Not...
Security fix for the ALT Linux 10 package samba version 4.14.2-alt1
March 25, 2021 Evgeny Sinelnikov 4.14.2-alt1 - Update to latest stable security release of the Samba 4.14 - Security fixes: + CVE-2020-27840: Heap corruption via crafted DN strings + CVE-2021-20277: Out of bounds read in AD DC LDAP server...
OPENSUSE-SU-2020:1121-1 Security update for ldb
This update for ldb fixes the following issues: - CVE-2020-10730: Fixed a null de-reference in AD DC LDAP server when ASQ and VLV combined bsc1173159. This update was imported from the SUSE:SLE-15-SP1:Update update project...
SUSE SLED15 / SLES15 Security Update : ldb (SUSE-SU-2020:2067-1)
This update for ldb fixes the following issues : CVE-2020-10730: Fixed a null de-reference in AD DC LDAP server when ASQ and VLV combined bsc1173159. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...
FreeBSD : samba -- multiple vulnerabilities (50a1bbc9-fb80-11e9-9e70-005056a311d1)
The samba project reports : Malicious servers can cause Samba client code to return filenames containing path separators to calling code. When the password contains multi-byte non-ASCII characters, the check password script does not receive the full password string. Users with the 'get changes'...
SUSE-SU-2019:2868-1 Security update for samba
This update for samba fixes the following issues: Security issues fixed: - CVE-2019-14847: User with 'get changes' permission can crash AD DC LDAP server via dirsync bsc1154598. - CVE-2019-10218: Client code can return filenames containing path separators bsc1144902. - CVE-2019-14833: Fixed Accen...
CVE-2019-12436
Samba 4.10.x before 4.10.5 has a NULL pointer dereference, leading to an AD DC LDAP server Denial of Service. This is related to an attacker using the paged search control. The attacker must have directory read access in order to attempt an exploit...