8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
0.002 Low
EPSS
Percentile
60.2%
A flaw was found in Samba. Samba AD users can cause the server to access
uninitialized data with an LDAP add or modify the request, usually
resulting in a segmentation fault.
Author | Note |
---|---|
mdeslaur | combined patches are in bug 15096 Fixing this in Ubuntu 18.04 LTS would require substantial code backports. We will not be fixing this issue in Ubuntu 18.04 LTS. In environments where this is of concern, we recommend updating to a more recent Ubuntu version. |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 20.04 | noarch | samba | < 2:4.13.17~dfsg-0ubuntu1.20.04.1 | UNKNOWN |
ubuntu | 22.04 | noarch | samba | < 2:4.15.9+dfsg-0ubuntu0.2 | UNKNOWN |
ubuntu | 22.10 | noarch | samba | < 2:4.16.4+dfsg-2ubuntu1 | UNKNOWN |
ubuntu | 23.04 | noarch | samba | < 2:4.16.4+dfsg-2ubuntu1 | UNKNOWN |
ubuntu | 23.10 | noarch | samba | < 2:4.16.4+dfsg-2ubuntu1 | UNKNOWN |
ubuntu | 24.04 | noarch | samba | < 2:4.16.4+dfsg-2ubuntu1 | UNKNOWN |
ubuntu | 14.04 | noarch | samba | < any | UNKNOWN |
ubuntu | 16.04 | noarch | samba | < any | UNKNOWN |