Lucene search
F5F5:K21312421HistoryJan 05, 2022 - 12:00 a.m.
K21312421 : Samba vulnerabilities CVE-2020-25718 and CVE-2021-23192
2022-01-0500:00:00
my.f5.com
19
Security Advisory Description
A flaw was found in the way samba, as an Active Directory Domain Controller, is able to support an RODC (read-only domain controller). This would allow an RODC to print administrator tickets.
A flaw was found in the way samba implemented DCE/RPC. If a client to a Samba server sent a very large DCE/RPC request, and chose to fragment it, an attacker could replace later fragments with their own data, bypassing the signature requirements.
Impact
There is no impact; F5 products are not affected by this vulnerability.
Related
ubuntucve
ubuntucve
CVE-2020-25718
2021-11-09 00:00:00
CVE-2021-23192
2021-11-09 00:00:00
cve
cve
CVE-2020-25718
2022-02-18 18:15:08
CVE-2021-23192
2022-03-02 23:15:08
debiancve
debiancve
CVE-2020-25718
2022-02-18 18:15:08
CVE-2021-23192
2022-03-02 23:15:08
osv
osv
CVE-2020-25718
2022-02-18 18:15:08
CVE-2021-23192
2022-03-02 23:15:08
samba - security update
2021-11-09 00:00:00
cvelist
cvelist
CVE-2020-25718
2022-02-18 00:00:00
CVE-2021-23192
2022-03-02 00:00:00
redhatcve
redhatcve
CVE-2020-25718
2021-11-10 03:32:36
CVE-2021-23192
2021-11-10 03:37:02
alpinelinux
alpinelinux
CVE-2020-25718
2022-02-18 18:15:08
CVE-2021-23192
2022-03-02 23:15:08
prion
prion
Design/Logic Flaw
2022-02-18 18:15:00
Design/Logic Flaw
2022-03-02 23:15:00
veracode
veracode
Privilege Escalation
2021-11-12 15:19:43
Fragment Injection
2021-11-12 15:46:59
ibm
ibm
nvd
nvd
CVE-2021-23192
2022-03-02 23:15:08
CVE-2020-25718
2022-02-18 18:15:08
cnvd
cnvd
Samba Input Validation Error Vulnerability (CNVD-2021-87030)
2021-11-12 00:00:00
samba
samba
Subsequent DCE/RPC fragment injection vulnerability
2021-11-09 00:00:00
Samba AD DC did not correctly sandbox
2021-11-09 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-23192 affecting package samba 4.12.5-6
2024-07-01 09:08:36
CVE-2020-25718 affecting package samba 4.12.5-6
2024-07-01 09:08:36
openvas
openvas
Samba 4.10.0 < 4.13.14, 4.14.0 < 4.14.10, 4.15.0 < 4.15.2 DCE/RPC Fragment Injection Vulnerability
2021-11-11 00:00:00
Fedora: Security Advisory for samba (FEDORA-2021-1d77047c61)
2021-12-04 00:00:00
Debian: Security Advisory (DSA-5003-1)
2021-11-14 00:00:00
freebsd
freebsd
samba -- Multiple Vulnerabilities
2021-11-10 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: libldb-2.3.2-1.fc34
2021-12-01 01:14:11
[SECURITY] Fedora 34 Update: freeipa-4.9.6-4.fc34
2021-12-01 01:14:11
[SECURITY] Fedora 35 Update: samba-4.15.2-3.fc35
2021-11-19 01:16:32
debian
debian
[SECURITY] [DSA 5003-1] samba security update
2021-11-09 18:46:42
[SECURITY] [DSA 5003-1] samba security update
2021-11-09 18:46:42
cisa
cisa
Samba Releases Security Updates
2021-11-09 00:00:00
nessus
nessus
openSUSE 15 Security Update : samba and ldb (openSUSE-SU-2021:3647-1)
2021-11-11 00:00:00
Samba 4.13.x < 4.13.14 / 4.14.x < 4.14.10 / 4.15.x < 4.15.2 Multiple Vulnerabilities
2021-11-19 00:00:00
Debian DSA-5003-1 : samba - security update
2021-11-10 00:00:00
mageia
mageia
Updated samba packages fix security vulnerability
2021-12-26 03:14:13
altlinux
altlinux
Security fix for the ALT Linux 10 package samba version 4.14.10-alt1
2021-11-07 00:00:00
ubuntu
ubuntu
Samba regression
2021-12-13 00:00:00
Samba vulnerabilities
2021-11-11 00:00:00
Samba regressions
2021-12-06 00:00:00
suse
suse
Security update for samba and ldb (important)
2021-11-10 00:00:00
Security update for samba (important)
2021-11-15 00:00:00
Security update for samba (important)
2021-11-10 00:00:00
redhat
redhat
(RHSA-2022:0008) Important: samba security update
2022-01-04 07:51:09
(RHSA-2021:5082) Important: samba security update
2021-12-13 08:15:38
(RHSA-2021:4843) Important: samba security update
2021-11-29 12:29:23
rocky
rocky
samba security update
2021-12-13 08:15:38
oraclelinux
oraclelinux
samba security update
2021-12-14 00:00:00
almalinux
almalinux
Important: samba security update
2021-12-13 08:15:38
gentoo
gentoo
Samba: Multiple Vulnerabilities
2023-09-17 00:00:00