DSA-4135-1 samba -- sambaID: oval:org.secpod.oval:def:603308 | Date: (C)2018-03-16 (M)2023-12-20 |
Class: PATCH | Family: unix |
Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server for Unix. The Common Vulnerabilities and Exposures project identifies the following issues: CVE-2018-1050 It was discovered that Samba is prone to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. CVE-2018-1057 Bjoern Baumbach from Sernet discovered that on Samba 4 AD DC the LDAP server incorrectly validates permissions to modify passwords over LDAP allowing authenticated users to change any other users passwords, including administrative users.
Product: |
libparse-pidl-perl |
samba |
registry-tools |
libpam-winbind |
libsmbclient |
smbclient |
winbind |
libwbclient-dev |
libwbclient0 |
python-samba |
ctdb |
libnss-winbind |