Lucene search

UbuntuUSN-4931-1

HistoryMay 03, 2021 - 12:00 a.m.

Samba vulnerabilities

2021-05-0300:00:00

ubuntu.com

106

6.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

6.8 Medium

AI Score

Confidence

Low

4.9 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:P/A:N

0.004 Low

EPSS

Percentile

74.0%

JSON

Releases

Ubuntu 14.04 ESM

Packages

samba - SMB/CIFS file, print, and login server for Unix

Details

Steven French discovered that Samba incorrectly handled ChangeNotify
permissions. A remote attacker could possibly use this issue to obtain file
name information. (CVE-2020-14318)

Bas Alberts discovered that Samba incorrectly handled certain winbind
requests. A remote attacker could possibly use this issue to cause winbind
to crash, resulting in a denial of service. (CVE-2020-14323)

Francis Brosnan Blázquez discovered that Samba incorrectly handled certain
invalid DNS records. A remote attacker could possibly use this issue to
cause the DNS server to crash, resulting in a denial of service.
(CVE-2020-14383)

Peter Eriksson discovered that Samba incorrectly handled certain negative
idmap cache entries. This issue could result in certain users gaining
unauthorized access to files, contrary to expected behaviour.
(CVE-2021-20254)

OSVersionArchitecturePackageVersionFilename
Ubuntu14.04noarchsamba< 2:4.3.11+dfsg-0ubuntu0.14.04.20+esm11UNKNOWN
Ubuntu14.04noarchlibnss-winbind< 2:4.3.11+dfsg-0ubuntu0.14.04.20UNKNOWN
Ubuntu14.04noarchlibnss-winbind-dbgsym< 2:4.3.11+dfsg-0ubuntu0.14.04.20UNKNOWN
Ubuntu14.04noarchlibpam-smbpass< 2:4.3.11+dfsg-0ubuntu0.14.04.20UNKNOWN
Ubuntu14.04noarchlibpam-smbpass-dbgsym< 2:4.3.11+dfsg-0ubuntu0.14.04.20UNKNOWN
Ubuntu14.04noarchlibpam-winbind< 2:4.3.11+dfsg-0ubuntu0.14.04.20UNKNOWN
Ubuntu14.04noarchlibpam-winbind-dbgsym< 2:4.3.11+dfsg-0ubuntu0.14.04.20UNKNOWN
Ubuntu14.04noarchlibparse-pidl-perl< 2:4.3.11+dfsg-0ubuntu0.14.04.20UNKNOWN
Ubuntu14.04noarchlibparse-pidl-perl-dbgsym< 2:4.3.11+dfsg-0ubuntu0.14.04.20UNKNOWN
Ubuntu14.04noarchlibsmbclient< 2:4.3.11+dfsg-0ubuntu0.14.04.20UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	14.04	noarch	samba	< 2:4.3.11+dfsg-0ubuntu0.14.04.20+esm11	UNKNOWN
Ubuntu	14.04	noarch	libnss-winbind	< 2:4.3.11+dfsg-0ubuntu0.14.04.20	UNKNOWN
Ubuntu	14.04	noarch	libnss-winbind-dbgsym	< 2:4.3.11+dfsg-0ubuntu0.14.04.20	UNKNOWN
Ubuntu	14.04	noarch	libpam-smbpass	< 2:4.3.11+dfsg-0ubuntu0.14.04.20	UNKNOWN
Ubuntu	14.04	noarch	libpam-smbpass-dbgsym	< 2:4.3.11+dfsg-0ubuntu0.14.04.20	UNKNOWN
Ubuntu	14.04	noarch	libpam-winbind	< 2:4.3.11+dfsg-0ubuntu0.14.04.20	UNKNOWN
Ubuntu	14.04	noarch	libpam-winbind-dbgsym	< 2:4.3.11+dfsg-0ubuntu0.14.04.20	UNKNOWN
Ubuntu	14.04	noarch	libparse-pidl-perl	< 2:4.3.11+dfsg-0ubuntu0.14.04.20	UNKNOWN
Ubuntu	14.04	noarch	libparse-pidl-perl-dbgsym	< 2:4.3.11+dfsg-0ubuntu0.14.04.20	UNKNOWN
Ubuntu	14.04	noarch	libsmbclient	< 2:4.3.11+dfsg-0ubuntu0.14.04.20	UNKNOWN