Lucene search

K

Veracode Vulnerability DatabaseVERACODE:29849

HistoryMar 29, 2021 - 6:11 p.m.

Denial Of Service (DoS)

2021-03-2918:11:01

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

14

samba

vulnerability

denial of service

invalid domain name

out-of-bounds memory

EPSS

0.009

Percentile

82.7%

samba is vulnerable to denial of service (DoS). A flaw was found in samba. Spaces used in a string around a domain name (DN), while supposed to be ignored, can cause invalid DN strings with spaces to instead write a zero-byte into out-of-bounds memory, resulting in a crash.

References

bugzilla.redhat.com/show_bug.cgi?id=1941400

lists.debian.org/debian-lts-announce/2021/03/msg00036.html

lists.fedoraproject.org/archives/list/[email protected]/message/VLZ74IF2N75VQSIHBL4B3P5WKWQCXSRY/

lists.fedoraproject.org/archives/list/[email protected]/message/X5J3B6PN5XMXF3OHYBNHDKZ3XFSUGY4L/

lists.fedoraproject.org/archives/list/[email protected]/message/ZXP3ONIY6MB4C5LDZV4YL5KJCES3UX24/

secdb.alpinelinux.org/v3.12/main.yaml

secdb.alpinelinux.org/v3.13/main.yaml

security.gentoo.org/glsa/202105-22

security.netapp.com/advisory/ntap-20210326-0007/

www.debian.org/security/2021/dsa-4884

www.samba.org/samba/security/CVE-2020-27840.html

EPSS

0.009

Percentile

82.7%

Related for VERACODE:29849

prion1 cbl_mariner2 ubuntucve1 alpinelinux1 openvas46 samba1 osv7 debiancve1 nessus38 cvelist1 nvd1 redhatcve1 cve1 altlinux1 fedora6 suse4 cisa1 ubuntu2 debian3 freebsd1 gentoo1 mageia1 rosalinux1