GoogleOSV:USN-4930-1

HistoryApr 29, 2021 - 4:48 p.m.

samba vulnerability

2021-04-2916:48:57

Google

osv.dev

samba

vulnerability

unauthorized access

files

idmap cache

peter eriksson

AI Score

6.6

Confidence

Low

EPSS

0.004

Percentile

74.4%

JSON

Peter Eriksson discovered that Samba incorrectly handled certain negative
idmap cache entries. This issue could result in certain users gaining
unauthorized access to files, contrary to expected behaviour.

References

ubuntu.com/security/CVE-2021-20254

ubuntu.com/security/notices/USN-4930-1

nessus

NewStart CGSL CORE 5.04 / MAIN 5.04 : samba Vulnerability (NS-SA-2021-0114)

2021-10-28 00:00:00

Amazon Linux 2 : samba (ALAS-2021-1680)

2021-07-01 00:00:00

EulerOS 2.0 SP9 : samba (EulerOS-SA-2021-2256)

2021-08-09 00:00:00

redhat

(RHSA-2021:3988) Moderate: samba security update

2021-10-26 07:01:25

(RHSA-2021:4058) Moderate: samba security update

2021-11-02 07:48:59

(RHSA-2021:4866) Moderate: samba security update

2021-11-30 15:15:12

openvas

SUSE: Security Advisory (SUSE-SU-2021:1438-1)

2021-06-09 00:00:00

Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2021-2179)

2021-07-13 00:00:00

Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2021-2347)

2021-09-04 00:00:00

fedora

[SECURITY] Fedora 33 Update: samba-4.13.8-0.fc33

2021-05-07 00:48:11

[SECURITY] Fedora 32 Update: samba-4.12.15-0.fc32

2021-05-08 01:10:40

[SECURITY] Fedora 34 Update: samba-4.14.4-0.fc34

2021-04-30 00:56:42

ibm

Security Bulletin: A vulnerability in Samba affects IBM Spectrum Scale SMB protocol access method (CVE-2021-20254)

2021-12-06 14:13:55

Security Bulletin: Samba for IBM i is affected by CVE-2021-20254

2021-05-13 14:26:31

Security Bulletin: Multiple Samba vulnerability issues in IBM Storwize V7000 Unified

2021-10-14 16:55:46

osv

CVE-2021-20254

2021-05-05 14:15:07

Moderate: samba security update

2021-11-02 07:48:59

Moderate: samba security update

2021-11-02 07:48:59

freebsd

samba -- negative idmap cache entries vulnerability

2021-04-29 00:00:00

oraclelinux

samba security and bug fix update

2021-06-09 00:00:00

samba security update

2021-11-02 00:00:00

cvelist

CVE-2021-20254

2021-05-05 13:36:32

almalinux

Moderate: samba security update

2021-11-02 07:48:59

cbl_mariner

CVE-2021-20254 affecting package samba 4.12.5-6

2024-10-01 09:12:11

altlinux

Security fix for the ALT Linux 10 package samba version 4.14.4-alt1

2021-04-30 00:00:00

Security fix for the ALT Linux 10 package samba version 4.14.4-alt2

2021-05-06 00:00:00

prion

Design/Logic Flaw

2021-05-05 14:15:00

centos

ctdb, libsmbclient, libwbclient, samba security update

2021-06-14 18:37:00

samba

Negative idmap cache entries can cause incorrect

2021-04-29 00:00:00

amazon

Medium: samba

2021-07-01 01:06:00

Critical: samba

2022-02-10 21:59:00

alpinelinux

CVE-2021-20254

2021-05-05 14:15:07

redhatcve

CVE-2021-20254

2021-04-29 10:18:51

debiancve

CVE-2021-20254

2021-05-05 14:15:07

veracode

Information Disclosure

2021-05-06 11:27:33

nvd

CVE-2021-20254

2021-05-05 14:15:07

cve

CVE-2021-20254

2021-05-05 14:15:07

ubuntucve

CVE-2021-20254

2021-04-29 00:00:00

cisa

Samba Releases Security Updates

2021-04-30 00:00:00

rocky

samba security update

2021-11-02 07:48:59

ubuntu

Samba vulnerability

2021-04-29 00:00:00

Samba vulnerabilities

2021-05-03 00:00:00

suse

Security update for samba (important)

2021-09-22 00:00:00

Security update for samba (important)

2021-05-01 00:00:00

mageia

Updated samba and ldb packages fix security vulnerabilities

2021-06-25 17:43:41

gentoo

Samba: Multiple vulnerabilities

2021-05-26 00:00:00

debian

[SECURITY] [DLA 2668-1] samba security update

2021-05-29 11:11:27

rosalinux

Advisory ROSA-SA-2021-1967

2021-07-02 18:07:38

Advisory ROSA-SA-2024-2451

2024-07-15 09:04:20

samba vulnerability

References

Related