Download
| Alert*
oval:org.secpod.oval:def:66809
Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information. The following packages have been upgraded to a later upstream version: samba . Se ... oval:org.secpod.oval:def:503588 Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information. The following packages have been upgraded to a later upstream version: samba . Se ... oval:org.secpod.oval:def:1601192 A flaw was found in samba versions 4.9.x up to 4.9.13, samba 4.10.x up to 4.10.8 and samba 4.11.x up to 4.11.0rc3, when certain parameters were set in the samba configuration file. An unauthenticated attacker could use this flaw to escape the shared directory and access the contents of directories o ... oval:org.secpod.oval:def:117096 Samba is the standard Windows interoperability suite of programs for Linux and Unix. oval:org.secpod.oval:def:1801615 On a Samba SMB server for all versions of Samba from 4.9.0 clients are able to escape outside the share root directory if certain configuration parameters set in the smb.conf file. The problem is reproducable if the "wide links" option is explicitly set to "yes" and either "unix extensions = no" or ... oval:org.secpod.oval:def:117104 Samba is the standard Windows interoperability suite of programs for Linux and Unix. oval:org.secpod.oval:def:69749 Stefan Metzmacher discovered a flaw in Samba, a SMB/CIFS file, print, and login server for Unix. Specific combinations of parameters and permissions can allow user to escape from the share path definition and see the complete "/" filesystem. Unix permission checks in the kernel are still enforced. D ... oval:org.secpod.oval:def:58412 A flaw was found in samba when certain parameters were set in the samba configuration file. An unauthenticated attacker could use this flaw to escape the shared directory and access the contents of directories outside of the share. oval:org.secpod.oval:def:604519 Stefan Metzmacher discovered a flaw in Samba, a SMB/CIFS file, print, and login server for Unix. Specific combinations of parameters and permissions can allow user to escape from the share path definition and see the complete "/" filesystem. Unix permission checks in the kernel are still enforced. D ... oval:org.secpod.oval:def:705161 samba: SMB/CIFS file, print, and login server for Unix Samba would allow unintended access to files over the network. oval:org.secpod.oval:def:89000628 This update for samba to version 4.10.17 fixes the following issues: - Fixed net command unable to negotiate SMB2; ; - Update to 4.10.17 - CVE-2020-10745: Invalid DNS or NBT queries containing dots use several seconds of CPU each; ; . - CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ ... oval:org.secpod.oval:def:205521 Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information. The following packages have been upgraded to a later upstream version: samba . Se ... oval:org.secpod.oval:def:1700373 A flaw was found in the samba client, all samba versions before samba 4.11.2, 4.10.10 and 4.9.15, where a malicious server can supply a pathname to the client with separators. This could allow the client to access files and folders outside of the SMB network pathnames. An attacker could use this vul ... oval:org.secpod.oval:def:1504051 [4.10.4-10] - resolves: #1786324 - fix security level check for DsRGetForestTrustInformation [4.10.4-9] - resolves: #1764468 - Fix CVE-2019-10218 [4.10.4-8] - resolves: #1656541 - Fix join using netbios name [4.10.4-7] - resolves: #1657428 - Fix spnego downgrade - resolves: #1663064 - Fix net ads jo ... oval:org.secpod.oval:def:1504112 openchange [2.3-24.0.1] - Add patch to build against samba 4.11 [2.3-24] - Rebuild for newer samba and libldb samba [4.11.2-13] - resolves: #1802182 - Fix join using netbios name [4.11.2-12] - related: #1781232 - Improve debug output of smbclient - resolves: #1794461 - Do not return bogus inode numb ... oval:org.secpod.oval:def:69524 Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information. The following packages have been upgraded to a later upstream version: samba . Se ... |