samba is vulnerable to Information Disclosure. The library defaultly sends new or reset passwords over a signed-only connection, when operating against a remote LDAP server.
git://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2023-0922
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YXBPYIA4VWNOD437NAHZ3NXKAETLFB5S/
lists.fedoraproject.org/archives/list/[email protected]/message/YXBPYIA4VWNOD437NAHZ3NXKAETLFB5S/
security.gentoo.org/glsa/202309-06
security.netapp.com/advisory/ntap-20230406-0007/
www.samba.org/samba/security/CVE-2023-0922.html