18 matches found
Alibaba Cloud Linux 3 : 0006: libldb (ALINUX3-SA-2023:0006)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2023:0006 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-32746: A flaw was found in the Samba AD LD...
CentOS 9 : libldb-2.5.2-1.el9
The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the libldb-2.5.2-1.el9 build changelog. - A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database...
NewStart CGSL MAIN 6.06 : libldb Vulnerability (NS-SA-2023-0133)
The remote NewStart CGSL host, running version MAIN 6.06, has libldb packages installed that are affected by a vulnerability: - A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module, resulting in a...
Rocky Linux 9 : libldb (RLSA-2022:8318)
The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:8318 advisory. - A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module,...
Medium: libldb
Issue Overview: A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module, resulting in a use-after-free issue. This issue is only possible when modifying certain privileged attributes, such as...
Amazon Linux 2023 : ldb-tools, libldb, libldb-devel (ALAS2023-2023-085)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-085 advisory. A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module, resulting in a use-after-free issue. This issue...
EulerOS Virtualization 2.10.0 : libldb (EulerOS-SA-2022-2908)
According to the versions of the libldb package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a...
EulerOS 2.0 SP8 : libldb (EulerOS-SA-2022-2798)
According to the versions of the libldb packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding databa...
Oracle Linux 9 : libldb (ELSA-2022-8318)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-8318 advisory. - resolves: rhbz2109017 - Fix CVE-2022-32746 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...
AlmaLinux 9 : libldb (ALSA-2022:8318)
The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:8318 advisory. - A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module,...
Oracle Linux 8 : libldb (ELSA-2022-7730)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-7730 advisory. - resolves: rhbz2109016 - Fix CVE-2022-32746 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...
EulerOS 2.0 SP9 : libldb (EulerOS-SA-2022-2734)
According to the versions of the libldb package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding databas...
Huawei EulerOS: Security Advisory for libldb (EulerOS-SA-2022-2656)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : libldb (EulerOS-SA-2022-2656)
According to the versions of the libldb package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding databas...
EulerOS 2.0 SP10 : libldb (EulerOS-SA-2022-2688)
According to the versions of the libldb package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding databas...
Huawei EulerOS: Security Advisory for libldb (EulerOS-SA-2021-1606)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
UBUNTU-CVE-2020-10730
A NULL pointer dereference, or possible use-after-free flaw was found in Samba AD LDAP server in versions before 4.10.17, before 4.11.11 and before 4.12.4. Although some versions of Samba shipped with Red Hat Enterprise Linux do not support Samba in AD mode, the affected code is shipped with the...
UBUNTU-CVE-2015-3223
The ldbwildcardcompare function in ldbmatch.c in ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles certain zero values, which allows remote attackers to cause a denial of service infinite loop via crafted packets...