Bugs fixes in "samba"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2021-43566 | All versions of Samba prior to 4.13.16 are vulnerable to a malicious client using an SMB1 or NFS race to allow a directory to be created in an area o | 2022-02-01 |
| CVE | CVE-2022-0336 | Samba AD users with permission to write to an account can impersonate arbitrary services | 2022-02-01 |
| CVE | CVE-2021-44142 | Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution | 2022-02-01 |
| CVE | CVE-2021-43566 | All versions of Samba prior to 4.13.16 are vulnerable to a malicious client using an SMB1 or NFS race to allow a directory to be created in an area o | 2022-02-01 |
| CVE | CVE-2021-44142 | Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution | 2022-02-01 |
| CVE | CVE-2022-0336 | Samba AD users with permission to write to an account can impersonate arbitrary services | 2022-02-01 |
| CVE | CVE-2021-44142 | Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution | 2022-02-01 |
| CVE | CVE-2021-43566 | All versions of Samba prior to 4.13.16 are vulnerable to a malicious client using an SMB1 or NFS race to allow a directory to be created in an area o | 2022-02-01 |
| CVE | CVE-2021-3671 | A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authen | 2021-12-06 |
| CVE | CVE-2020-25722 | AD DC UPN vs samAccountName not checked | 2021-12-06 |
| CVE | CVE-2020-25717 | A user on the domain can become root on domain members | 2021-12-06 |
| CVE | CVE-2016-2124 | SMB1 client connections can be downgraded to plaintext authentication | 2021-12-06 |
| CVE | CVE-2021-3671 | A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authen | 2021-12-06 |
| CVE | CVE-2020-25722 | AD DC UPN vs samAccountName not checked | 2021-12-06 |
| CVE | CVE-2020-25717 | A user on the domain can become root on domain members | 2021-12-06 |
| CVE | CVE-2016-2124 | SMB1 client connections can be downgraded to plaintext authentication | 2021-12-06 |
| CVE | CVE-2021-3671 | A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authen | 2021-12-06 |
| CVE | CVE-2020-25722 | AD DC UPN vs samAccountName not checked | 2021-12-06 |
| CVE | CVE-2020-25717 | A user on the domain can become root on domain members | 2021-12-06 |
| CVE | CVE-2016-2124 | SMB1 client connections can be downgraded to plaintext authentication | 2021-12-06 |
About
-
Send Feedback to @ubuntu_updates
