287 matches found
Astra Linux - уязвимость в samba
A null pointer dereference flaw was detected in Samba’s Winbind service in versions prior to 4.11.15, before 4.12.9, and before 4.13.1. A local user could exploit this flaw to crash the Winbind service, resulting in a denial of service...
Unity Linux 20.1060e / 20.1070e Security Update: samba (UTSA-2026-017521)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017521 advisory. A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to...
Astra Linux - уязвимость в samba
A out-of-bounds read vulnerability was discovered in Samba due to insufficient length checks in the winbinddpamauthcrap.c file. When performing NTLM authentication, the client sends cryptographic challenges back to the server. These responses have varying lengths, and Winbind fails to check the...
Azure Linux 3.0 Security Update: samba (CVE-2020-14323)
The version of samba installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-14323 advisory. - A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12....
MiracleLinux 7 : samba-4.10.16-9.0.1.el7.AXS7 (AXSA:2020-1012:06)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-1012:06 advisory. samba: Netlogon elevation of privilege vulnerability Zerologon CVE-2020-1472 samba: Missing handle permissions check in SMB1/2/3 ChangeNotify...
MiracleLinux 8 : openchange-2.3-27.el8, samba-4.13.3-3.el8 (AXSA:2021-2082:01)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2082:01 advisory. samba: Netlogon elevation of privilege vulnerability Zerologon CVE-2020-1472 samba: Missing handle permissions check in SMB1/2/3 ChangeNotify...
MiracleLinux 4 : samba-3.6.9-168.AXS4.0.1 (AXSA:2014-176:02)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-176:02 advisory. CVE-2012-6150 The winbindnamelisttosidstringlist function in nsswitch/pamwinbind.c in Samba through 4.1.2 handles invalid requiremembershipof group...
TencentOS Server 3: samba (TSSA-2023:0313)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0313 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
EUVD-2007-4122
Malware in sbrugna...
EUVD-2006-2195
Malware in sbrugna...
EUVD-2022-34413
Malicious code in bioql PyPI...
A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15 before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service.
...
openSUSE: Security Advisory for gssntlmssp (openSUSE-SU-2023:0048-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
samba: out-of-bounds read in winbind AUTH_CRAP
An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbinddpamauthcrap.c. When performing NTLM authentication, the client replies to cryptographic challenges back to the server. These replies have variable lengths, and Winbind fails to check the lan manage...
samba: out-of-bounds read in winbind AUTH_CRAP
An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbinddpamauthcrap.c. When performing NTLM authentication, the client replies to cryptographic challenges back to the server. These replies have variable lengths, and Winbind fails to check the lan manage...
Amazon Linux 2 : samba (ALAS-2023-2367)
The version of samba installed on the remote host is prior to 4.10.16-24. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2367 advisory. When doing NTLM authentication, the client sends replies tocryptographic challenges back to the server. These replieshave...
samba security, bug fix, and enhancement update
evolution-mapi 3.28.3-8 - Related: 2190417 - Rebuild for samba rebase to 4.18.x openchange 2.3-32.0.1 - Use ldconfigscriptlets 2.3-32 - Related: 2190417 Rebuild for samba rebase to 4.18.x samba 4.18.6-1 - related: rhbz2190417 - Update to version 4.18.6 - resolves: rhbz2232564 - Fix the rpc...
samba: out-of-bounds read in winbind AUTH_CRAP
An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbinddpamauthcrap.c. When performing NTLM authentication, the client replies to cryptographic challenges back to the server. These replies have variable lengths, and Winbind fails to check the lan manage...
Rocky Linux 8 : samba (RLSA-2021:1647)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:1647 advisory. - A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and...
USN-6238-1: Samba vulnerabilities | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 22.04 Description It was discovered that Samba incorrectly handled Winbind NTLM authentication responses. An attacker could possibly use this issue to cause Samba to crash, resulting in a denial of service. CVE-2022-2127...