[3.10] samba: Multiple vulnerabilities (CVE-2019-12435, CVE-2019-12436)ID: oval:org.secpod.oval:def:1801481 | Date: (C)2019-06-27 (M)2023-11-10 |
Class: PATCH | Family: unix |
CVE-2019-12435: Samba AD DC Denial of Service in DNS management server ¶ The dnsserver RPC pipe provides administrative facilities to modify DNS records and zones. An authenticated user can crash the RPC server process via a NULL pointer de-reference. There is no further vulnerability associated with this issue, merely a denial of service. Affected Versions:¶ Samba 4.9 and 4.10 Fixed In Version:¶ Samba 4.9.9 and 4.10.5
Platform: |
Alpine Linux 3.10 |