Vulnerabilities (CVE)

Vendor filter

Samba Subscribe

Filter

156 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-10858 4 Samba, Canonical, Debian and 1 more 8 Samba, Ubuntu Linux, Debian Linux and 5 more 2019-06-26 6.5
A heap-buffer overflow was found in the way samba clients processed extra long filename in a directory listing. A malicious samba server could use this flaw to cause arbitrary code execution on a samba client. Samba versions before 4.6.16, 4.7.9...
CVE-2019-12436 2 Samba, Canonical 2 Samba, Ubuntu Linux 2019-06-20 4.0
Samba 4.10.x before 4.10.5 has a NULL pointer dereference, leading to an AD DC LDAP server Denial of Service. This is related to an attacker using the paged search control. The attacker must have directory read access in order to attempt an exploit.
CVE-2019-12435 1 Samba 1 Samba 2019-06-19 4.0
Samba 4.9.x before 4.9.9 and 4.10.x before 4.10.5 has a NULL pointer dereference, leading to Denial of Service. This is related to the AD DC DNS management server (dnsserver) RPC server process.
CVE-2019-3880 5 Redhat, Samba, Debian and 2 more 6 Gluster Storage, Samba, Debian Linux and 3 more 2019-05-27 5.5
A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. An unprivileged attacker could use this flaw to create a new registry hive file anywhere they have unix permissions which could lead to...
CVE-2019-3870 2 Samba, Fedoraproject 2 Samba, Fedora 2019-05-27 3.6
A vulnerability was found in Samba from version (including) 4.9 to versions before 4.9.6 and 4.10.2. During the creation of a new Samba AD DC, files are created in a private subdirectory of the install location. This directory is typically mode...
CVE-2017-17433 2 Samba, Debian 2 Rsync, Debian Linux 2019-04-30 4.3
The recv_files function in receiver.c in the daemon in rsync 3.1.2, and 3.1.3-development before 2017-12-03, proceeds with certain file metadata updates before checking for a filename in the daemon_filter_list data structure, which allows remote...
CVE-2015-0240 4 Novell, Redhat, Samba and 1 more 6 Ubuntu Linux, Suse Linux Enterprise Software Development Kit, Suse Linux Enterprise Desktop and 3 more 2019-04-22 10.0
The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25, 4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized stack pointer, which allows remote attackers to...
CVE-2017-2619 3 Samba, Debian, Redhat 3 Samba, Debian Linux, Enterprise Linux 2019-04-22 6.0
Samba before versions 4.6.1, 4.5.7 and 4.4.11 are vulnerable to a malicious client using a symlink race to allow access to areas of the server file system not exported under the share definition.
CVE-2017-12163 3 Redhat, Samba, Debian 6 Gluster Storage, Samba, Debian Linux and 3 more 2019-04-22 4.8
An information leak flaw was found in the way SMB1 protocol was implemented by Samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8. A malicious client could use this flaw to dump server memory contents to a file on the samba share or...
CVE-2017-12150 3 Redhat, Samba, Debian 6 Gluster Storage, Samba, Debian Linux and 3 more 2019-04-22 5.8
It was found that samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8 did not enforce "SMB signing" when certain configuration options were enabled. A remote attacker could launch a man-in-the-middle attack and retrieve information...
CVE-2014-3560 3 Canonical, Samba, Redhat 3 Ubuntu Linux, Enterprise Linux, Samba 2019-04-22 7.9
NetBIOS name services daemon (nmbd) in Samba 4.0.x before 4.0.21 and 4.1.x before 4.1.11 allows remote attackers to execute arbitrary code via unspecified vectors that modify heap memory, involving a sizeof operation on an incorrect variable in...
CVE-2017-9461 3 Samba, Redhat, Debian 8 Samba, Enterprise Linux Desktop, Enterprise Linux Server and 5 more 2019-04-15 6.8
smbd in Samba before 4.4.10 and 4.5.x before 4.5.6 has a denial of service vulnerability (fd_open_atomic infinite loop with high CPU usage and memory consumption) due to wrongly handling dangling symlinks.
CVE-2018-1057 3 Samba, Canonical, Debian 3 Samba, Ubuntu Linux, Debian Linux 2019-04-09 6.5
On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly validates permissions to modify passwords over LDAP allowing authenticated users to change any other users' passwords, including administrative users and...
CVE-2018-1050 4 Samba, Canonical, Debian and 1 more 6 Samba, Ubuntu Linux, Debian Linux and 3 more 2019-04-09 2.9
All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC...
CVE-2018-5764 3 Samba, Canonical, Debian 3 Rsync, Ubuntu Linux, Debian Linux 2019-03-25 5.0
The parse_arguments function in options.c in rsyncd in rsync before 3.1.3 does not prevent multiple --protect-args uses, which allows remote attackers to bypass an argument-sanitization protection mechanism.
CVE-2019-3824 3 Samba, Canonical, Debian 3 Samba, Ubuntu Linux, Debian Linux 2019-03-13 4.0
A flaw was found in the way an LDAP search expression could crash the shared LDAP server process of a samba AD DC in samba before version 4.10. An authenticated user, having read permissions on the LDAP server, could use this flaw to cause denial...
CVE-2018-16857 1 Samba 1 Samba 2019-02-05 4.3
Samba from version 4.9.0 and before version 4.9.3 that have AD DC configurations watching for bad passwords (to restrict brute forcing of passwords) in a window of more than 3 minutes may not watch for bad passwords at all. The primary risk from...
CVE-2018-16841 3 Samba, Canonical, Debian 3 Samba, Ubuntu Linux, Debian Linux 2019-02-04 4.0
Samba from version 4.3.0 and before versions 4.7.12, 4.8.7 and 4.9.3 are vulnerable to a denial of service. When configured to accept smart-card authentication, Samba's KDC will call talloc_free() twice on the same memory if the principal in a...
CVE-2018-16851 3 Samba, Canonical, Debian 3 Samba, Ubuntu Linux, Debian Linux 2019-02-04 4.0
Samba from version 4.0.0 and before versions 4.7.12, 4.8.7, 4.9.3 is vulnerable to a denial of service. During the processing of an LDAP search before Samba's AD DC returns the LDAP entries to the client, the entries are cached in a single memory...
CVE-2018-16853 1 Samba 1 Samba 2019-02-04 4.3
Samba from version 4.7.0 has a vulnerability that allows a user in a Samba AD domain to crash the KDC when Samba is built in the non-default MIT Kerberos configuration. With this advisory the Samba Team clarify that the MIT Kerberos build of the...