samba is vulnerable to unauthorized file write. An improper implementation of the RPC endpoint that emulates the Windows registry service API allows an unprivileged attacker to create new registry hive file which can lead to creation of new files in the samba share.
lists.opensuse.org/opensuse-security-announce/2019-04/msg00050.html
lists.opensuse.org/opensuse-security-announce/2019-04/msg00050.html
lists.opensuse.org/opensuse-security-announce/2019-04/msg00106.html
lists.opensuse.org/opensuse-security-announce/2019-04/msg00106.html
access.redhat.com/errata/RHSA-2019:1966
access.redhat.com/errata/RHSA-2019:1967
access.redhat.com/errata/RHSA-2019:2099
access.redhat.com/errata/RHSA-2019:3582
access.redhat.com/security/cve/cve-2019-3880
access.redhat.com/security/cve/cve-2019-3880
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1703030
bugzilla.redhat.com/show_bug.cgi?id=1708290
bugzilla.redhat.com/show_bug.cgi?id=1720475
bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3880
bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3880
lists.debian.org/debian-lts-announce/2019/04/msg00013.html
lists.debian.org/debian-lts-announce/2019/04/msg00013.html
lists.fedoraproject.org/archives/list/[email protected]/message/6354GALK73CZWQKFUG7AWB6EIEGFMF62/
lists.fedoraproject.org/archives/list/[email protected]/message/6354GALK73CZWQKFUG7AWB6EIEGFMF62/
lists.fedoraproject.org/archives/list/[email protected]/message/HSRLRO7BPRFETVFZ4TVJL2VFZEPHKJY4/
lists.fedoraproject.org/archives/list/[email protected]/message/HSRLRO7BPRFETVFZ4TVJL2VFZEPHKJY4/
lists.fedoraproject.org/archives/list/[email protected]/message/JTJVFA3RZ6G2IZDTVKLHRMX6QBYA4GPA/
lists.fedoraproject.org/archives/list/[email protected]/message/JTJVFA3RZ6G2IZDTVKLHRMX6QBYA4GPA/
security.netapp.com/advisory/ntap-20190411-0004/
security.netapp.com/advisory/ntap-20190411-0004/
support.f5.com/csp/article/K20804356
support.f5.com/csp/article/K20804356
www.samba.org/samba/security/CVE-2019-3880.html
www.samba.org/samba/security/CVE-2019-3880.html
www.synology.com/security/advisory/Synology_SA_19_15
www.synology.com/security/advisory/Synology_SA_19_15