17 matches found
Advisory ROSA-SA-2024-2450
Software: samba 4.12.3 OS: ROSA Virtualization 2.1 packageevrstring: samba-4.12.3 CVE-ID: CVE-2016-2124 BDU-ID: 2021-05993 CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability was discovered in the way Samba implemented SMB1 authentication. An attacker could use this vulnerability to extract the public...
Slackware: Security Advisory (SSA:2018-333-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-16857
It was found that the 'bad password observation window' was ineffective when set to a value greater than 3 minutes. This could allow for brute force password attacks in some situations. Mitigation Bad password lockout is not configured by default, it is only effective if a threshold has been set...
Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2020-1040)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization for ARM 64 3.0.5.0 : samba (EulerOS-SA-2020-1040)
According to the versions of the samba packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - Samba from version 4.9.0 and before version 4.9.3 that have AD DC configurations watching for bad passwords to restrict...
Security fix for the ALT Linux 8 package samba-DC version 4.9.10-alt1
July 16, 2019 Evgeny Sinelnikov 4.9.10-alt1 - Update to latest summer release of samba-4.9 backported to p8 - Security fixes: + CVE-2019-12435 Samba AD DC Denial of Service in DNS management server dnsserver + CVE-2018-16860 Samba AD DC S4U2Self/S4U2Proxy unkeyed checksum + CVE-2018-16852 NULL...
Fedora Update for samba FEDORA-2019-208cc34d40
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 29 : 2:samba (2018-e423e8743f)
Update to Samba 4.9.3 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenabl...
[slackware-security] samba
New samba packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/samba-4.6.16-i586-2slack14.2.txz: Rebuilt. This update patches some security issues: CVE-2018-14629: Unprivileged adding o...
Slackware 14.0 / 14.1 / 14.2 / current : samba (SSA:2018-333-01)
New samba packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2018-333-01. The text itself is copyright C Slackware Linux...
Samba 4.9.x Multiple Vulnerabilities (CVE-2018-16852, CVE-2018-16857)
Samba is prone to multiple vulnerabilities. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2018-16857
Samba from version 4.9.0 and before version 4.9.3 that have AD DC configurations watching for bad passwords to restrict brute forcing of passwords in a window of more than 3 minutes may not watch for bad passwords at all. The primary risk from this issue is with regards to domains that have been...
CVE-2018-16857
Samba from version 4.9.0 and before version 4.9.3 that have AD DC configurations watching for bad passwords to restrict brute forcing of passwords in a window of more than 3 minutes may not watch for bad passwords at all. The primary risk from this issue is with regards to domains that have been...
CVE-2018-16857
CVE-2018-16857 affects Samba AD DC password policy checks for bad passwords. From Samba 4.9.0 and older than 4.9.3, domains upgraded from 4.8 and earlier may fail to enforce bad-password counting within a window over 3 minutes, meaning password policy testing may not reflect the configured policy...
CVE-2018-16857
Samba from version 4.9.0 and before version 4.9.3 that have AD DC configurations watching for bad passwords to restrict brute forcing of passwords in a window of more than 3 minutes may not watch for bad passwords at all. The primary risk from this issue is with regards to domains that have been...
Security fix for the ALT Linux 10 package samba version 4.9.3-alt1
Nov. 28, 2018 Evgeny Sinelnikov 4.9.3-alt1 - Update to autumn security release - Revert Samba DC to build with internal Heimdal Kerberos implementation - Clean test module of thirdparty/iso8601 and subunit modules - Security fixes: + CVE-2018-14629 Unprivileged adding of CNAME record causing loop...
[ASA-201811-22] samba: multiple issues
Arch Linux Security Advisory ASA-201811-22 ========================================== Severity: High Date : 2018-11-28 CVE-ID : CVE-2018-14629 CVE-2018-16841 CVE-2018-16851 CVE-2018-16852 CVE-2018-16853 CVE-2018-16857 Package : samba Type : multiple issues Remote : Yes Link :...