7 matches found
AZL-45378 CVE-2023-0225 affecting package samba for versions less than 4.18.3-1
A flaw was found in Samba. An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory...
AZL-45258 CVE-2022-3116 affecting package samba for versions less than 4.18.3-1
The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker with network access to an application that depends on the vulnerable code path can cause the application to crash...
AZL-36998 CVE-2021-20251 affecting package samba for versions less than 4.18.3-1
A flaw was found in samba. A race condition in the password lockout code may lead to the risk of brute force attacks being successful if special conditions are met...
AZL-37009 CVE-2022-0336 affecting package samba for versions less than 4.18.3-1
The Samba AD DC includes checks when adding service principals names SPNs to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account, such as...
AZL-44790 CVE-2022-32745 affecting package samba for versions less than 4.18.3-1
A flaw was found in Samba. Samba AD users can cause the server to access uninitialized data with an LDAP add or modify the request, usually resulting in a segmentation fault...
AZL-36994 CVE-2020-25718 affecting package samba for versions less than 4.18.3-1
A flaw was found in the way samba, as an Active Directory Domain Controller, is able to support an RODC read-only domain controller. This would allow an RODC to print administrator tickets...
AZL-36991 CVE-2020-1472 affecting package samba for versions less than 4.18.3-1
An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol MS-NRPC. An attacker who successfully exploited the vulnerability could run a specially crafted application on a...