MiracleLinux 8 : samba-4.17.5-3.el8.ML.1 (AXSA:2023-6311:09)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6311:09 advisory. samba: SMB2 packet signing is not enforced when server signing = required is set CVE-2023-3347 Tenable has extracted the preceding description block directly...

MiracleLinux 3 : samba-3.0.33-3.29.0.1.AXS3 (AXSA:2010-367:02)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2010-367:02 advisory. Samba is the suite of programs by which a lot of PC-related machines share files, printers, and other information such as lists of available files and printer...

Fedora 43 : samba (2025-5f46b27e1c)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-5f46b27e1c advisory. Update to Samba 4.23.2 - Security fix for CVE-2025-9640 and CVE-2025-10230 Tenable has extracted the preceding description block directly from the...

EUVD-2004-0806

Malware in sbrugna...

EUVD-2007-4122

Malware in sbrugna...

EUVD-1999-1269

Malware in sbrugna...

[SECURITY] Fedora 42 Update: samba-4.22.2-1.fc42

Samba is the standard Windows interoperability suite of programs for Linux and Unix...

Azure Linux 3.0 Security Update: heimdal / samba (CVE-2021-44758)

The version of heimdal / samba installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-44758 advisory. - Heimdal before 7.7.1 allows attackers to cause a NULL pointer dereference in a SPNEGO acceptor via ...

AZL-31745 CVE-2023-5568 affecting package samba 4.12.5-7

A heap-based Buffer Overflow flaw was discovered in Samba. It could allow a remote, authenticated attacker to exploit this vulnerability to cause a denial of service...

AZL-25602 CVE-2022-45141 affecting package samba 4.12.5-7

Since the Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability was disclosed by Microsoft on Nov 8 2022 and per RFC8429 it is assumed that rc4-hmac is weak, Vulnerable Samba Active Directory DCs will issue rc4-hmac encrypted tickets despite the target server supporting better encryption...

SUSE CVE-2012-0817

Memory leak in smbd in Samba 3.6.x before 3.6.3 allows remote attackers to cause a denial of service memory and CPU consumption by making many connection requests...

SUSE CVE-2013-0213

The Samba Web Administration Tool SWAT in Samba 3.x before 3.5.21, 3.6.x before 3.6.12, and 4.x before 4.0.2 allows remote attackers to conduct clickjacking attacks via a 1 FRAME or 2 IFRAME element...

Samba < 4.15.13 / 4.16.x < 4.16.8 / 4.17.x < 4.17.4 Multiple Vulnerabilities

The version of Samba running on the remote host is prior to 4.15.13, 4.16.x prior to 4.16.8, or 4.17.x prior to 4.17.4. It is, therefore, affected by multiple vulnerabilities: - Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability. CVE-2022-37966, CVE-2022-45141 - Windows Kerberos...

AZL-10662 CVE-2021-3670 affecting package samba 4.12.5-7

MaxQueryDuration not honoured in Samba AD DC LDAP...

AZL-8649 CVE-2016-2124 affecting package samba 4.12.5-7

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required...

Samba Security Vulnerability (CVE-2013-0454)

A share configuration Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify i...

SUSE-SU-2020:2730-1 Security update for samba

This update for samba fixes the following issues: - ZeroLogon: An elevation of privilege was possible with some non default configurations when an attacker established a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol MS-NRPC CVE-2020-1472,...

SUSE-SU-2020:1948-1 Security update for ldb, samba

This update for ldb, samba fixes the following issues: Changes in samba: - Update to samba 4.11.11 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; bso14364; bsc1173159 + CVE-2020-10745: invalid DNS or NBT queries containing dots use several seconds of CPU each;...

Updated samba packages fix security vulnerabilities

Updated samba packages fix security vulnerabilities: A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a use-after-free in Samba's AD DC LDAP server CVE-2020-10700. A deeply nested filter in an un-authenticated LDAP search can exhaust the LDAP server's stack memory causing ...

Security fix for the ALT Linux 8 package samba version 4.9.17-alt1

4.9.17-alt1 built Dec. 18, 2019 Evgeny Sinelnikov in task 242978 Dec. 13, 2019 Evgeny Sinelnikov - Update to last security winter release - Security fixes: + CVE-2019-14861: Samba AD DC zone-named record Denial of Service in DNS management server + CVE-2019-14870: DelegationNotAllowed not being...