samba is vulnerable to Information Disclosure. The library defaultly sends new or reset passwords over a signed-only connection, when operating against a remote LDAP server.
Vendor | Product | Version | CPE |
---|---|---|---|
- | samba\ | focal | cpe:2.3:a:-:samba\:focal:2\:4.11.6+dfsg-0ubuntu1.6:*:*:*:*:*:*:* |
- | samba\ | focal | cpe:2.3:a:-:samba\:focal:2\:4.11.6+dfsg-0ubuntu1.4:*:*:*:*:*:*:* |
- | samba\ | focal | cpe:2.3:a:-:samba\:focal:2\:4.11.6+dfsg-0ubuntu1:*:*:*:*:*:*:* |
- | samba\ | devel | cpe:2.3:a:-:samba\:devel:2\:4.13.3+dfsg-1ubuntu2:*:*:*:*:*:*:* |
- | samba\ | devel | cpe:2.3:a:-:samba\:devel:2\:4.13.2+dfsg-3ubuntu1:*:*:*:*:*:*:* |
- | samba\ | devel | cpe:2.3:a:-:samba\:devel:2\:4.12.5+dfsg-3ubuntu3:*:*:*:*:*:*:* |
- | samba\ | devel | cpe:2.3:a:-:samba\:devel:2\:4.12.5+dfsg-3ubuntu4.1:*:*:*:*:*:*:* |
- | samba\ | devel | cpe:2.3:a:-:samba\:devel:2\:4.13.5+dfsg-2ubuntu2:*:*:*:*:*:*:* |
- | samba\ | sid | cpe:2.3:a:-:samba\:sid:2\:4.13.5+dfsg-2:*:*:*:*:*:*:* |
- | samba\ | sid | cpe:2.3:a:-:samba\:sid:2\:4.13.2+dfsg-3:*:*:*:*:*:*:* |
git://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2023-0922
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YXBPYIA4VWNOD437NAHZ3NXKAETLFB5S/
lists.fedoraproject.org/archives/list/[email protected]/message/YXBPYIA4VWNOD437NAHZ3NXKAETLFB5S/
security.gentoo.org/glsa/202309-06
security.netapp.com/advisory/ntap-20230406-0007/
www.samba.org/samba/security/CVE-2023-0922.html