12 matches found
Slackware: Security Advisory (SSA:2015-020-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Samba Privilege Escalation Vulnerability (CVE-2014-8143)
In Samba Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the...
openSUSE Security Update : samba (openSUSE-2015-179)
samba was updated to fix two security issues. These security issues were fixed : - CVE-2015-0240: Ensure we don't call tallocfree on an uninitialized pointer bnc917376. - CVE-2014-8143: Samba 4.0.x before 4.0.24, 4.1.x before 4.1.16, and 4.2.x before 4.2rc4, when an Active Directory Domain...
openSUSE: Security Advisory for samba (openSUSE-SU-2015:0375-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for samba (important)
samba was updated to fix two security issues. These security issues were fixed: - CVE-2015-0240: Ensure we don't call tallocfree on an uninitialized pointer bnc917376. - CVE-2014-8143: Samba 4.0.x before 4.0.24, 4.1.x before 4.1.16, and 4.2.x before 4.2rc4, when an Active Directory Domain...
[USN-2481-1] Samba vulnerability
========================================================================== Ubuntu Security Notice USN-2481-1 January 22, 2015 samba vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
[slackware-security] samba
New samba packages are available for Slackware 14.1 and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/samba-4.1.16-i486-1slack14.1.txz: Upgraded. This update is a security release in order to address CVE-2014-8143 Elevation of privilege...
CVE-2014-8143
Samba 4.0.x before 4.0.24, 4.1.x before 4.1.16, and 4.2.x before 4.2rc4, when an Active Directory Domain Controller AD DC is configured, allows remote authenticated users to set the LDB userAccountControl UFSERVERTRUSTACCOUNT bit, and consequently gain privileges, by leveraging delegation of...
CVE-2014-8143
CVE-2014-8143 affects Samba AD DC deployments: Samba 4.0.x before 4.0.24, 4.1.x before 4.1.16, and 4.2.x before 4.2rc4 are vulnerable when AD DC is configured. The flaw allows remote authenticated users to abuse delegated authority for user/computer account creation to set the UF_SERVER_TRUST_ACC...
FreeBSD : samba -- Elevation of privilege to Active Directory Domain Controller (d4f45676-9d33-11e4-8275-000c292e4fd8)
Samba team reports : In Samba's AD DC we neglected to ensure that attempted modifications of the userAccountControl attribute did not allow the UFSERVERTRUSTACCOUNT bit to be set. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
Security fix for the ALT Linux 10 package samba version 4.1.16-alt1
Jan. 15, 2015 Andrey Cherepanov 4.1.16-alt1 - New version - Security fixes: + CVE-2014-8143: Samba's AD DC allows the administrator to delegate creation of user or computer accounts to specific users or groups. However, all released versions of Samba's AD DC did not implement the additional...
Security fix for the ALT Linux 8 package samba-DC version 4.1.16-alt1
Jan. 15, 2015 Andrey Cherepanov 4.1.16-alt1 - New version - Security fixes: + CVE-2014-8143: Samba's AD DC allows the administrator to delegate creation of user or computer accounts to specific users or groups. However, all released versions of Samba's AD DC did not implement the additional...