var-202008-0248
Vulnerability from variot

An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC). An attacker who successfully exploited the vulnerability could run a specially crafted application on a device on the network. To exploit the vulnerability, an unauthenticated attacker would be required to use MS-NRPC to connect to a domain controller to obtain domain administrator access. Microsoft is addressing the vulnerability in a phased two-part rollout. These updates address the vulnerability by modifying how Netlogon handles the usage of Netlogon secure channels. For guidelines on how to manage the changes required for this vulnerability and more information on the phased rollout, see How to manage the changes in Netlogon secure channel connections associated with CVE-2020-1472 (updated September 28, 2020). When the second phase of Windows updates become available in Q1 2021, customers will be notified via a revision to this security vulnerability. If you wish to be notified when these updates are released, we recommend that you register for the security notifications mailer to be alerted of content changes to this advisory. See Microsoft Technical Security Notifications. The Microsoft Windows Netlogon Remote Protocol (MS-NRPC) reuses a known, static, zero-value initialization vector (IV) in AES-CFB8 mode. plural Microsoft Windows The product contains an elevation of privilege vulnerability. Both Microsoft Windows and Microsoft Windows Server are products of Microsoft Corporation. Microsoft Windows is an operating system for personal devices. Microsoft Windows Server is a server operating system. Netlogon is a service used to register all SRV resource records for domain controllers. The following products and versions are affected: Microsoft Windows Server 2008 R2 SP1, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016, Windows Server 2019, Windows Server 1903, Windows Server 1909, Windows Server 2004. A flaw was found in the way samba handled file and directory permissions. (CVE-2020-14318) A null pointer dereference flaw was found in Samba's winbind service. This flaw allows a local user to crash the winbind service, causing a denial of service. The highest threat from this vulnerability is to system availability. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability. (CVE-2020-1472). 8) - aarch64, noarch, ppc64le, s390x, x86_64

The following packages have been upgraded to a later upstream version: samba (4.13.3).

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 202012-24


                                        https://security.gentoo.org/

Severity: Normal Title: Samba: Multiple vulnerabilities Date: December 24, 2020 Bugs: #743433, #751724 ID: 202012-24


Synopsis

Multiple vulnerabilities have been found in Samba, the worst of which could result in a Denial of Service condition.

Background

Samba is a suite of SMB and CIFS client/server programs.

Affected packages

 -------------------------------------------------------------------
  Package              /     Vulnerable     /            Unaffected
 -------------------------------------------------------------------

1 net-fs/samba < 4.12.9 >= 4.12.9

Description

Multiple vulnerabilities have been discovered in Samba. Please review the CVE identifiers referenced below for details.

Impact

Please review the referenced CVE identifiers for details.

Workaround

There is no known workaround at this time.

Resolution

All Samba users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=net-fs/samba-4.12.9"

References

[ 1 ] CVE-2020-14318 https://nvd.nist.gov/vuln/detail/CVE-2020-14318 [ 2 ] CVE-2020-14323 https://nvd.nist.gov/vuln/detail/CVE-2020-14323 [ 3 ] CVE-2020-14383 https://nvd.nist.gov/vuln/detail/CVE-2020-14383 [ 4 ] CVE-2020-1472 https://nvd.nist.gov/vuln/detail/CVE-2020-1472

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

https://security.gentoo.org/glsa/202012-24

Concerns?

Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

License

Copyright 2020 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5 . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

===================================================================== Red Hat Security Advisory

Synopsis: Moderate: samba security and bug fix update Advisory ID: RHSA-2020:5439-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:5439 Issue date: 2020-12-15 CVE Names: CVE-2020-1472 CVE-2020-14318 CVE-2020-14323 =====================================================================

  1. Summary:

An update for samba is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

  1. Relevant releases/architectures:

Red Hat Enterprise Linux Client (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - noarch, x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - noarch, x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Server (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Resilient Storage (v. 7) - ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - noarch, x86_64

  1. Description:

Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information.

Security Fix(es):

  • samba: Netlogon elevation of privilege vulnerability (Zerologon) (CVE-2020-1472)

  • samba: Missing handle permissions check in SMB1/2/3 ChangeNotify (CVE-2020-14318)

  • samba: Unprivileged user can crash winbind (CVE-2020-14323)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • The 'require_membership_of' documentation in pam_winbind manpage is incorrect (BZ#1853272)

  • Malfunctioning %U substitution in valid users option (BZ#1868917)

  • Regression: smbd and nmbd are restarted when samba-winbind package is upgraded (BZ#1878205)

  • winbindd memory leak on wbinfo -u with security=ADS (BZ#1892313)

  • Solution:

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing this update, the smb service will be restarted automatically.

  1. Bugs fixed (https://bugzilla.redhat.com/):

1853272 - The 'require_membership_of' documentation in pam_winbind manpage is incorrect [rhel-7.9.z] 1868917 - Malfunctioning %U substitution in valid users option [rhel-7.9.z] 1878205 - Regression: smbd and nmbd are restarted when samba-winbind package is upgraded [rhel-7.9.z] 1879822 - CVE-2020-1472 samba: Netlogon elevation of privilege vulnerability (Zerologon) 1891685 - CVE-2020-14323 samba: Unprivileged user can crash winbind 1892313 - winbindd memory leak on wbinfo -u with security=ADS [rhel-7.9.z] 1892631 - CVE-2020-14318 samba: Missing handle permissions check in SMB1/2/3 ChangeNotify

  1. Package List:

Red Hat Enterprise Linux Client (v. 7):

Source: samba-4.10.16-9.el7_9.src.rpm

noarch: samba-common-4.10.16-9.el7_9.noarch.rpm

x86_64: libsmbclient-4.10.16-9.el7_9.i686.rpm libsmbclient-4.10.16-9.el7_9.x86_64.rpm libwbclient-4.10.16-9.el7_9.i686.rpm libwbclient-4.10.16-9.el7_9.x86_64.rpm samba-client-4.10.16-9.el7_9.x86_64.rpm samba-client-libs-4.10.16-9.el7_9.i686.rpm samba-client-libs-4.10.16-9.el7_9.x86_64.rpm samba-common-libs-4.10.16-9.el7_9.i686.rpm samba-common-libs-4.10.16-9.el7_9.x86_64.rpm samba-common-tools-4.10.16-9.el7_9.x86_64.rpm samba-debuginfo-4.10.16-9.el7_9.i686.rpm samba-debuginfo-4.10.16-9.el7_9.x86_64.rpm samba-krb5-printing-4.10.16-9.el7_9.x86_64.rpm samba-libs-4.10.16-9.el7_9.i686.rpm samba-libs-4.10.16-9.el7_9.x86_64.rpm samba-winbind-4.10.16-9.el7_9.x86_64.rpm samba-winbind-clients-4.10.16-9.el7_9.x86_64.rpm samba-winbind-modules-4.10.16-9.el7_9.i686.rpm samba-winbind-modules-4.10.16-9.el7_9.x86_64.rpm

Red Hat Enterprise Linux Client Optional (v. 7):

noarch: samba-pidl-4.10.16-9.el7_9.noarch.rpm

x86_64: libsmbclient-devel-4.10.16-9.el7_9.i686.rpm libsmbclient-devel-4.10.16-9.el7_9.x86_64.rpm libwbclient-devel-4.10.16-9.el7_9.i686.rpm libwbclient-devel-4.10.16-9.el7_9.x86_64.rpm samba-4.10.16-9.el7_9.x86_64.rpm samba-dc-4.10.16-9.el7_9.x86_64.rpm samba-dc-libs-4.10.16-9.el7_9.x86_64.rpm samba-debuginfo-4.10.16-9.el7_9.i686.rpm samba-debuginfo-4.10.16-9.el7_9.x86_64.rpm samba-devel-4.10.16-9.el7_9.i686.rpm samba-devel-4.10.16-9.el7_9.x86_64.rpm samba-python-4.10.16-9.el7_9.i686.rpm samba-python-4.10.16-9.el7_9.x86_64.rpm samba-python-test-4.10.16-9.el7_9.x86_64.rpm samba-test-4.10.16-9.el7_9.x86_64.rpm samba-test-libs-4.10.16-9.el7_9.i686.rpm samba-test-libs-4.10.16-9.el7_9.x86_64.rpm samba-vfs-glusterfs-4.10.16-9.el7_9.x86_64.rpm samba-winbind-krb5-locator-4.10.16-9.el7_9.x86_64.rpm

Red Hat Enterprise Linux ComputeNode (v. 7):

Source: samba-4.10.16-9.el7_9.src.rpm

noarch: samba-common-4.10.16-9.el7_9.noarch.rpm

x86_64: libsmbclient-4.10.16-9.el7_9.i686.rpm libsmbclient-4.10.16-9.el7_9.x86_64.rpm libwbclient-4.10.16-9.el7_9.i686.rpm libwbclient-4.10.16-9.el7_9.x86_64.rpm samba-client-4.10.16-9.el7_9.x86_64.rpm samba-client-libs-4.10.16-9.el7_9.i686.rpm samba-client-libs-4.10.16-9.el7_9.x86_64.rpm samba-common-libs-4.10.16-9.el7_9.i686.rpm samba-common-libs-4.10.16-9.el7_9.x86_64.rpm samba-common-tools-4.10.16-9.el7_9.x86_64.rpm samba-debuginfo-4.10.16-9.el7_9.i686.rpm samba-debuginfo-4.10.16-9.el7_9.x86_64.rpm samba-libs-4.10.16-9.el7_9.i686.rpm samba-libs-4.10.16-9.el7_9.x86_64.rpm samba-winbind-4.10.16-9.el7_9.x86_64.rpm samba-winbind-clients-4.10.16-9.el7_9.x86_64.rpm samba-winbind-modules-4.10.16-9.el7_9.i686.rpm samba-winbind-modules-4.10.16-9.el7_9.x86_64.rpm

Red Hat Enterprise Linux ComputeNode Optional (v. 7):

noarch: samba-pidl-4.10.16-9.el7_9.noarch.rpm

x86_64: libsmbclient-devel-4.10.16-9.el7_9.i686.rpm libsmbclient-devel-4.10.16-9.el7_9.x86_64.rpm libwbclient-devel-4.10.16-9.el7_9.i686.rpm libwbclient-devel-4.10.16-9.el7_9.x86_64.rpm samba-4.10.16-9.el7_9.x86_64.rpm samba-dc-4.10.16-9.el7_9.x86_64.rpm samba-dc-libs-4.10.16-9.el7_9.x86_64.rpm samba-debuginfo-4.10.16-9.el7_9.i686.rpm samba-debuginfo-4.10.16-9.el7_9.x86_64.rpm samba-devel-4.10.16-9.el7_9.i686.rpm samba-devel-4.10.16-9.el7_9.x86_64.rpm samba-krb5-printing-4.10.16-9.el7_9.x86_64.rpm samba-python-4.10.16-9.el7_9.i686.rpm samba-python-4.10.16-9.el7_9.x86_64.rpm samba-python-test-4.10.16-9.el7_9.x86_64.rpm samba-test-4.10.16-9.el7_9.x86_64.rpm samba-test-libs-4.10.16-9.el7_9.i686.rpm samba-test-libs-4.10.16-9.el7_9.x86_64.rpm samba-vfs-glusterfs-4.10.16-9.el7_9.x86_64.rpm samba-winbind-krb5-locator-4.10.16-9.el7_9.x86_64.rpm

Red Hat Enterprise Linux Server (v. 7):

Source: samba-4.10.16-9.el7_9.src.rpm

noarch: samba-common-4.10.16-9.el7_9.noarch.rpm

ppc64: libsmbclient-4.10.16-9.el7_9.ppc.rpm libsmbclient-4.10.16-9.el7_9.ppc64.rpm libwbclient-4.10.16-9.el7_9.ppc.rpm libwbclient-4.10.16-9.el7_9.ppc64.rpm samba-4.10.16-9.el7_9.ppc64.rpm samba-client-4.10.16-9.el7_9.ppc64.rpm samba-client-libs-4.10.16-9.el7_9.ppc.rpm samba-client-libs-4.10.16-9.el7_9.ppc64.rpm samba-common-libs-4.10.16-9.el7_9.ppc.rpm samba-common-libs-4.10.16-9.el7_9.ppc64.rpm samba-common-tools-4.10.16-9.el7_9.ppc64.rpm samba-debuginfo-4.10.16-9.el7_9.ppc.rpm samba-debuginfo-4.10.16-9.el7_9.ppc64.rpm samba-krb5-printing-4.10.16-9.el7_9.ppc64.rpm samba-libs-4.10.16-9.el7_9.ppc.rpm samba-libs-4.10.16-9.el7_9.ppc64.rpm samba-winbind-4.10.16-9.el7_9.ppc64.rpm samba-winbind-clients-4.10.16-9.el7_9.ppc64.rpm samba-winbind-modules-4.10.16-9.el7_9.ppc.rpm samba-winbind-modules-4.10.16-9.el7_9.ppc64.rpm

ppc64le: libsmbclient-4.10.16-9.el7_9.ppc64le.rpm libwbclient-4.10.16-9.el7_9.ppc64le.rpm samba-4.10.16-9.el7_9.ppc64le.rpm samba-client-4.10.16-9.el7_9.ppc64le.rpm samba-client-libs-4.10.16-9.el7_9.ppc64le.rpm samba-common-libs-4.10.16-9.el7_9.ppc64le.rpm samba-common-tools-4.10.16-9.el7_9.ppc64le.rpm samba-debuginfo-4.10.16-9.el7_9.ppc64le.rpm samba-krb5-printing-4.10.16-9.el7_9.ppc64le.rpm samba-libs-4.10.16-9.el7_9.ppc64le.rpm samba-winbind-4.10.16-9.el7_9.ppc64le.rpm samba-winbind-clients-4.10.16-9.el7_9.ppc64le.rpm samba-winbind-modules-4.10.16-9.el7_9.ppc64le.rpm

s390x: libsmbclient-4.10.16-9.el7_9.s390.rpm libsmbclient-4.10.16-9.el7_9.s390x.rpm libwbclient-4.10.16-9.el7_9.s390.rpm libwbclient-4.10.16-9.el7_9.s390x.rpm samba-4.10.16-9.el7_9.s390x.rpm samba-client-4.10.16-9.el7_9.s390x.rpm samba-client-libs-4.10.16-9.el7_9.s390.rpm samba-client-libs-4.10.16-9.el7_9.s390x.rpm samba-common-libs-4.10.16-9.el7_9.s390.rpm samba-common-libs-4.10.16-9.el7_9.s390x.rpm samba-common-tools-4.10.16-9.el7_9.s390x.rpm samba-debuginfo-4.10.16-9.el7_9.s390.rpm samba-debuginfo-4.10.16-9.el7_9.s390x.rpm samba-krb5-printing-4.10.16-9.el7_9.s390x.rpm samba-libs-4.10.16-9.el7_9.s390.rpm samba-libs-4.10.16-9.el7_9.s390x.rpm samba-winbind-4.10.16-9.el7_9.s390x.rpm samba-winbind-clients-4.10.16-9.el7_9.s390x.rpm samba-winbind-modules-4.10.16-9.el7_9.s390.rpm samba-winbind-modules-4.10.16-9.el7_9.s390x.rpm

x86_64: libsmbclient-4.10.16-9.el7_9.i686.rpm libsmbclient-4.10.16-9.el7_9.x86_64.rpm libwbclient-4.10.16-9.el7_9.i686.rpm libwbclient-4.10.16-9.el7_9.x86_64.rpm samba-4.10.16-9.el7_9.x86_64.rpm samba-client-4.10.16-9.el7_9.x86_64.rpm samba-client-libs-4.10.16-9.el7_9.i686.rpm samba-client-libs-4.10.16-9.el7_9.x86_64.rpm samba-common-libs-4.10.16-9.el7_9.i686.rpm samba-common-libs-4.10.16-9.el7_9.x86_64.rpm samba-common-tools-4.10.16-9.el7_9.x86_64.rpm samba-debuginfo-4.10.16-9.el7_9.i686.rpm samba-debuginfo-4.10.16-9.el7_9.x86_64.rpm samba-krb5-printing-4.10.16-9.el7_9.x86_64.rpm samba-libs-4.10.16-9.el7_9.i686.rpm samba-libs-4.10.16-9.el7_9.x86_64.rpm samba-python-4.10.16-9.el7_9.i686.rpm samba-python-4.10.16-9.el7_9.x86_64.rpm samba-winbind-4.10.16-9.el7_9.x86_64.rpm samba-winbind-clients-4.10.16-9.el7_9.x86_64.rpm samba-winbind-modules-4.10.16-9.el7_9.i686.rpm samba-winbind-modules-4.10.16-9.el7_9.x86_64.rpm

Red Hat Enterprise Linux Server Resilient Storage (v. 7):

ppc64le: ctdb-4.10.16-9.el7_9.ppc64le.rpm ctdb-tests-4.10.16-9.el7_9.ppc64le.rpm samba-debuginfo-4.10.16-9.el7_9.ppc64le.rpm

s390x: ctdb-4.10.16-9.el7_9.s390x.rpm ctdb-tests-4.10.16-9.el7_9.s390x.rpm samba-debuginfo-4.10.16-9.el7_9.s390x.rpm

x86_64: ctdb-4.10.16-9.el7_9.x86_64.rpm ctdb-tests-4.10.16-9.el7_9.x86_64.rpm samba-debuginfo-4.10.16-9.el7_9.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 7):

noarch: samba-pidl-4.10.16-9.el7_9.noarch.rpm

ppc64: libsmbclient-devel-4.10.16-9.el7_9.ppc.rpm libsmbclient-devel-4.10.16-9.el7_9.ppc64.rpm libwbclient-devel-4.10.16-9.el7_9.ppc.rpm libwbclient-devel-4.10.16-9.el7_9.ppc64.rpm samba-dc-4.10.16-9.el7_9.ppc64.rpm samba-dc-libs-4.10.16-9.el7_9.ppc64.rpm samba-debuginfo-4.10.16-9.el7_9.ppc.rpm samba-debuginfo-4.10.16-9.el7_9.ppc64.rpm samba-devel-4.10.16-9.el7_9.ppc.rpm samba-devel-4.10.16-9.el7_9.ppc64.rpm samba-python-4.10.16-9.el7_9.ppc.rpm samba-python-4.10.16-9.el7_9.ppc64.rpm samba-python-test-4.10.16-9.el7_9.ppc64.rpm samba-test-4.10.16-9.el7_9.ppc64.rpm samba-test-libs-4.10.16-9.el7_9.ppc.rpm samba-test-libs-4.10.16-9.el7_9.ppc64.rpm samba-winbind-krb5-locator-4.10.16-9.el7_9.ppc64.rpm

ppc64le: libsmbclient-devel-4.10.16-9.el7_9.ppc64le.rpm libwbclient-devel-4.10.16-9.el7_9.ppc64le.rpm samba-dc-4.10.16-9.el7_9.ppc64le.rpm samba-dc-libs-4.10.16-9.el7_9.ppc64le.rpm samba-debuginfo-4.10.16-9.el7_9.ppc64le.rpm samba-devel-4.10.16-9.el7_9.ppc64le.rpm samba-python-4.10.16-9.el7_9.ppc64le.rpm samba-python-test-4.10.16-9.el7_9.ppc64le.rpm samba-test-4.10.16-9.el7_9.ppc64le.rpm samba-test-libs-4.10.16-9.el7_9.ppc64le.rpm samba-winbind-krb5-locator-4.10.16-9.el7_9.ppc64le.rpm

s390x: libsmbclient-devel-4.10.16-9.el7_9.s390.rpm libsmbclient-devel-4.10.16-9.el7_9.s390x.rpm libwbclient-devel-4.10.16-9.el7_9.s390.rpm libwbclient-devel-4.10.16-9.el7_9.s390x.rpm samba-dc-4.10.16-9.el7_9.s390x.rpm samba-dc-libs-4.10.16-9.el7_9.s390x.rpm samba-debuginfo-4.10.16-9.el7_9.s390.rpm samba-debuginfo-4.10.16-9.el7_9.s390x.rpm samba-devel-4.10.16-9.el7_9.s390.rpm samba-devel-4.10.16-9.el7_9.s390x.rpm samba-python-4.10.16-9.el7_9.s390.rpm samba-python-4.10.16-9.el7_9.s390x.rpm samba-python-test-4.10.16-9.el7_9.s390x.rpm samba-test-4.10.16-9.el7_9.s390x.rpm samba-test-libs-4.10.16-9.el7_9.s390.rpm samba-test-libs-4.10.16-9.el7_9.s390x.rpm samba-winbind-krb5-locator-4.10.16-9.el7_9.s390x.rpm

x86_64: libsmbclient-devel-4.10.16-9.el7_9.i686.rpm libsmbclient-devel-4.10.16-9.el7_9.x86_64.rpm libwbclient-devel-4.10.16-9.el7_9.i686.rpm libwbclient-devel-4.10.16-9.el7_9.x86_64.rpm samba-dc-4.10.16-9.el7_9.x86_64.rpm samba-dc-libs-4.10.16-9.el7_9.x86_64.rpm samba-debuginfo-4.10.16-9.el7_9.i686.rpm samba-debuginfo-4.10.16-9.el7_9.x86_64.rpm samba-devel-4.10.16-9.el7_9.i686.rpm samba-devel-4.10.16-9.el7_9.x86_64.rpm samba-python-test-4.10.16-9.el7_9.x86_64.rpm samba-test-4.10.16-9.el7_9.x86_64.rpm samba-test-libs-4.10.16-9.el7_9.i686.rpm samba-test-libs-4.10.16-9.el7_9.x86_64.rpm samba-vfs-glusterfs-4.10.16-9.el7_9.x86_64.rpm samba-winbind-krb5-locator-4.10.16-9.el7_9.x86_64.rpm

Red Hat Enterprise Linux Workstation (v. 7):

Source: samba-4.10.16-9.el7_9.src.rpm

noarch: samba-common-4.10.16-9.el7_9.noarch.rpm

x86_64: libsmbclient-4.10.16-9.el7_9.i686.rpm libsmbclient-4.10.16-9.el7_9.x86_64.rpm libwbclient-4.10.16-9.el7_9.i686.rpm libwbclient-4.10.16-9.el7_9.x86_64.rpm samba-4.10.16-9.el7_9.x86_64.rpm samba-client-4.10.16-9.el7_9.x86_64.rpm samba-client-libs-4.10.16-9.el7_9.i686.rpm samba-client-libs-4.10.16-9.el7_9.x86_64.rpm samba-common-libs-4.10.16-9.el7_9.i686.rpm samba-common-libs-4.10.16-9.el7_9.x86_64.rpm samba-common-tools-4.10.16-9.el7_9.x86_64.rpm samba-debuginfo-4.10.16-9.el7_9.i686.rpm samba-debuginfo-4.10.16-9.el7_9.x86_64.rpm samba-krb5-printing-4.10.16-9.el7_9.x86_64.rpm samba-libs-4.10.16-9.el7_9.i686.rpm samba-libs-4.10.16-9.el7_9.x86_64.rpm samba-python-4.10.16-9.el7_9.i686.rpm samba-python-4.10.16-9.el7_9.x86_64.rpm samba-winbind-4.10.16-9.el7_9.x86_64.rpm samba-winbind-clients-4.10.16-9.el7_9.x86_64.rpm samba-winbind-modules-4.10.16-9.el7_9.i686.rpm samba-winbind-modules-4.10.16-9.el7_9.x86_64.rpm

Red Hat Enterprise Linux Workstation Optional (v. 7):

noarch: samba-pidl-4.10.16-9.el7_9.noarch.rpm

x86_64: libsmbclient-devel-4.10.16-9.el7_9.i686.rpm libsmbclient-devel-4.10.16-9.el7_9.x86_64.rpm libwbclient-devel-4.10.16-9.el7_9.i686.rpm libwbclient-devel-4.10.16-9.el7_9.x86_64.rpm samba-dc-4.10.16-9.el7_9.x86_64.rpm samba-dc-libs-4.10.16-9.el7_9.x86_64.rpm samba-debuginfo-4.10.16-9.el7_9.i686.rpm samba-debuginfo-4.10.16-9.el7_9.x86_64.rpm samba-devel-4.10.16-9.el7_9.i686.rpm samba-devel-4.10.16-9.el7_9.x86_64.rpm samba-python-test-4.10.16-9.el7_9.x86_64.rpm samba-test-4.10.16-9.el7_9.x86_64.rpm samba-test-libs-4.10.16-9.el7_9.i686.rpm samba-test-libs-4.10.16-9.el7_9.x86_64.rpm samba-vfs-glusterfs-4.10.16-9.el7_9.x86_64.rpm samba-winbind-krb5-locator-4.10.16-9.el7_9.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

  1. References:

https://access.redhat.com/security/cve/CVE-2020-1472 https://access.redhat.com/security/cve/CVE-2020-14318 https://access.redhat.com/security/cve/CVE-2020-14323 https://access.redhat.com/security/updates/classification/#moderate

  1. Contact:

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

iQIVAwUBX9idqtzjgjWX9erEAQhLxg//aGgge7wuhwtrhosIFhpoMEPD3hrlBtLk 5uRe7SaKoJa65TxAbnAD2IRP118/bZyXkS4zi1NMW3cDubvdz+pXJEq5Avfp28qp 7HcfGUKrgcDzRXlAUGBMk9P7kfCUx+jiGluhO/qsFs3TbMxcZoQ8HJxP1php4tCd ibIHVRPRS8Z+o2SzwvSW0AnkYJTTBGCht0JZKN9rIaWwljYgUXW1Fy9CTAGd48Jc EcRDHn4sDNGKl60g77e/7FVpIz7HjNyD+AWtVx8hhf6IguJnPJF9LnP1Msu0fjMd K1eCVDOwlIbZYE11+bJ28sy90HEzsihUO5KJgUgn1yj28JVaezm6dm9TT8RG/N0P 6p4tJhW8OkmVgM7ltbPI6ENfyFih/LWKekEc0LUxbFUmD3u/aytwl8OaF/0vxdGV L/7fY5QIAdLKsgNrDl817XAHmtVaarwg6swfM/iOwICatlNiAIeEr4hbCc/ZvkCI iiVLKa64AXcBuIXBERa4lzqqjeCbAc0vuXG5zyk9wY23fORfrxZBYvU9SSfstubQ OR3F7Q3wDX9Nx7pdYnSmwwhHnVq8kNXO62agaKvlmQ3Z7exeLzdDM6Wy1wdXpYzi 4bPulpSOhcwDieCQLfPb+fMo13lbkfLX1eX1PeG0pK/nv//KBkkiTp1nLlHwRZzM 2lNVzS89G3A= =hQrq -----END PGP SIGNATURE-----

-- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . ========================================================================= Ubuntu Security Notice USN-4510-2 September 17, 2020

samba vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 14.04 ESM

Summary:

Samba would allow unintended access to files over the network.

Software Description: - samba: SMB/CIFS file, print, and login server for Unix

Details:

USN-4510-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 14.04 ESM.

Original advisory details:

Tom Tervoort discovered that the Netlogon protocol implemented by Samba incorrectly handled the authentication scheme.

This update fixes the issue by changing the "server schannel" setting to default to "yes", instead of "auto", which will force a secure netlogon channel. This may result in compatibility issues with older devices. A future update may allow a finer-grained control over this setting.

Update instructions:

The problem can be corrected by updating your system to the following package versions:

Ubuntu 14.04 ESM: samba 2:4.3.11+dfsg-0ubuntu0.14.04.20+esm9

In general, a standard system update will make all the necessary changes. See the following link for examples: https://www.samba.org/samba/security/CVE-2020-1472.html

In addition, this update adds additional server checks for the protocol attack in the client-specified challenge to provide some protection when 'server schannel = no/auto' and avoid the false-positive results when running the proof-of-concept exploit

Show details on source website


{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-202008-0248",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "fedora",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fedoraproject",
        "version": "33"
      },
      {
        "model": "windows server 1909",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "microsoft",
        "version": "*"
      },
      {
        "model": "windows server 1903",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "microsoft",
        "version": "*"
      },
      {
        "model": "windows server 2019",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "microsoft",
        "version": null
      },
      {
        "model": "windows server 2008",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "microsoft",
        "version": "r2"
      },
      {
        "model": "fedora",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fedoraproject",
        "version": "31"
      },
      {
        "model": "samba",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "samba",
        "version": "4.10.18"
      },
      {
        "model": "directory server",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "synology",
        "version": "4.4.5-0101"
      },
      {
        "model": "zfs storage appliance kit",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "oracle",
        "version": "8.8"
      },
      {
        "model": "samba",
        "scope": "gte",
        "trust": 1.0,
        "vendor": "samba",
        "version": "4.11.0"
      },
      {
        "model": "ubuntu linux",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "canonical",
        "version": "18.04"
      },
      {
        "model": "windows server 2004",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "microsoft",
        "version": null
      },
      {
        "model": "windows server 20h2",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "microsoft",
        "version": null
      },
      {
        "model": "windows server 2012",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "microsoft",
        "version": null
      },
      {
        "model": "samba",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "samba",
        "version": "4.12.7"
      },
      {
        "model": "leap",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "opensuse",
        "version": "15.2"
      },
      {
        "model": "ubuntu linux",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "canonical",
        "version": "16.04"
      },
      {
        "model": "windows server 2012",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "microsoft",
        "version": "r2"
      },
      {
        "model": "ubuntu linux",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "canonical",
        "version": "14.04"
      },
      {
        "model": "ubuntu linux",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "canonical",
        "version": "20.04"
      },
      {
        "model": "fedora",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fedoraproject",
        "version": "32"
      },
      {
        "model": "leap",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "opensuse",
        "version": "15.1"
      },
      {
        "model": "samba",
        "scope": "gte",
        "trust": 1.0,
        "vendor": "samba",
        "version": "4.12.0"
      },
      {
        "model": "windows server 2016",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "microsoft",
        "version": null
      },
      {
        "model": "samba",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "samba",
        "version": "4.11.13"
      },
      {
        "model": "linux",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "debian",
        "version": "9.0"
      },
      {
        "model": "microsoft windows server 2019",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": null
      },
      {
        "model": "microsoft windows server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": "2008 r2 for x64-based systems sp1"
      },
      {
        "model": "microsoft windows server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": "2016"
      },
      {
        "model": "microsoft windows server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": "2019"
      },
      {
        "model": "microsoft windows server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": "2012"
      },
      {
        "model": "microsoft windows server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": "2012 (server core installation)"
      },
      {
        "model": "microsoft windows server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": "1903 (server core installation)"
      },
      {
        "model": "microsoft windows server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": "2012 r2 (server core installation)"
      },
      {
        "model": "microsoft windows server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": "2004 (server core installation)"
      },
      {
        "model": "microsoft windows server 2008",
        "scope": null,
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": null
      },
      {
        "model": "microsoft windows server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": "2008 r2 for x64-based systems sp1 (server core installation)"
      },
      {
        "model": "microsoft windows server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": "2012 r2"
      },
      {
        "model": "microsoft windows server 2012",
        "scope": null,
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": null
      },
      {
        "model": "microsoft windows server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": "1909 (server core installation)"
      },
      {
        "model": "microsoft windows server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": "2016 (server core installation)"
      },
      {
        "model": "microsoft windows server 2016",
        "scope": null,
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": null
      },
      {
        "model": "microsoft windows server 2019",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": "(server core installation)"
      },
      {
        "model": "microsoft windows server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8",
        "version": "2019 (server core installation)"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-008530"
      },
      {
        "db": "NVD",
        "id": "CVE-2020-1472"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "This document was written by Eric Hatleback, Art Manion, and Will Dormann.We have not received a statement from the vendor.",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#490028"
      }
    ],
    "trust": 0.8
  },
  "cve": "CVE-2020-1472",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 8.6,
            "id": "CVE-2020-1472",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 1.9,
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 8.6,
            "id": "VHN-167626",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:M/AU:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "author": "nvd@nist.gov",
            "availabilityImpact": "HIGH",
            "baseScore": 10.0,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 3.9,
            "id": "CVE-2020-1472",
            "impactScore": 6.0,
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "author": "secure@microsoft.com",
            "availabilityImpact": "NONE",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 1.8,
            "id": "CVE-2020-1472",
            "impactScore": 3.6,
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          {
            "attackComplexity": "Low",
            "attackVector": "Local",
            "author": "OTHER",
            "availabilityImpact": "None",
            "baseScore": 5.5,
            "baseSeverity": "Medium",
            "confidentialityImpact": "High",
            "exploitabilityScore": null,
            "id": "JVNDB-2020-008530",
            "impactScore": null,
            "integrityImpact": "None",
            "privilegesRequired": "Low",
            "scope": "Unchanged",
            "trust": 0.8,
            "userInteraction": "None",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2020-1472",
            "trust": 1.0,
            "value": "CRITICAL"
          },
          {
            "author": "secure@microsoft.com",
            "id": "CVE-2020-1472",
            "trust": 1.0,
            "value": "MEDIUM"
          },
          {
            "author": "NVD",
            "id": "CVE-2020-1472",
            "trust": 0.8,
            "value": "Medium"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-202008-548",
            "trust": 0.6,
            "value": "CRITICAL"
          },
          {
            "author": "VULHUB",
            "id": "VHN-167626",
            "trust": 0.1,
            "value": "HIGH"
          },
          {
            "author": "VULMON",
            "id": "CVE-2020-1472",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-167626"
      },
      {
        "db": "VULMON",
        "id": "CVE-2020-1472"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-008530"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202008-548"
      },
      {
        "db": "NVD",
        "id": "CVE-2020-1472"
      },
      {
        "db": "NVD",
        "id": "CVE-2020-1472"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC). An attacker who successfully exploited the vulnerability could run a specially crafted application on a device on the network. \nTo exploit the vulnerability, an unauthenticated attacker would be required to use MS-NRPC to connect to a domain controller to obtain domain administrator access. \nMicrosoft is addressing the vulnerability in a phased two-part rollout. These updates address the vulnerability by modifying how Netlogon handles the usage of Netlogon secure channels. \nFor guidelines on how to manage the changes required for this vulnerability and more information on the phased rollout, see  How to manage the changes in Netlogon secure channel connections associated with CVE-2020-1472 (updated September 28, 2020). \nWhen the second phase of Windows updates become available in Q1 2021, customers will be notified via a revision to this security vulnerability. If you wish to be notified when these updates are released, we recommend that you register for the security notifications mailer to be alerted of content changes to this advisory. See Microsoft Technical Security Notifications. The Microsoft Windows Netlogon Remote Protocol (MS-NRPC) reuses a known, static, zero-value initialization vector (IV) in AES-CFB8 mode. plural Microsoft Windows The product contains an elevation of privilege vulnerability. Both Microsoft Windows and Microsoft Windows Server are products of Microsoft Corporation. Microsoft Windows is an operating system for personal devices. Microsoft Windows Server is a server operating system. Netlogon is a service used to register all SRV resource records for domain controllers. The following products and versions are affected: Microsoft Windows Server 2008 R2 SP1, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016, Windows Server 2019, Windows Server 1903, Windows Server 1909, Windows Server 2004. A flaw was found in the way samba handled file and directory permissions. (CVE-2020-14318)\nA null pointer dereference flaw was found in Samba\u0027s winbind service. This flaw allows a local user to crash the winbind service, causing a denial of service. The highest threat from this vulnerability is to system availability. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability. (CVE-2020-1472). 8) - aarch64, noarch, ppc64le, s390x, x86_64\n\n3. \n\nThe following packages have been upgraded to a later upstream version:\nsamba (4.13.3). \n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat\nEnterprise Linux 8.4 Release Notes linked from the References section. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory                           GLSA 202012-24\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n                                            https://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n  Severity: Normal\n     Title: Samba: Multiple vulnerabilities\n      Date: December 24, 2020\n      Bugs: #743433, #751724\n        ID: 202012-24\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nMultiple vulnerabilities have been found in Samba, the worst of which\ncould result in a Denial of Service condition. \n\nBackground\n==========\n\nSamba is a suite of SMB and CIFS client/server programs. \n\nAffected packages\n=================\n\n     -------------------------------------------------------------------\n      Package              /     Vulnerable     /            Unaffected\n     -------------------------------------------------------------------\n   1  net-fs/samba                 \u003c 4.12.9                  \u003e= 4.12.9\n\nDescription\n===========\n\nMultiple vulnerabilities have been discovered in Samba. Please review\nthe CVE identifiers referenced below for details. \n\nImpact\n======\n\nPlease review the referenced CVE identifiers for details. \n\nWorkaround\n==========\n\nThere is no known workaround at this time. \n\nResolution\n==========\n\nAll Samba users should upgrade to the latest version:\n\n   # emerge --sync\n   # emerge --ask --oneshot --verbose \"\u003e=net-fs/samba-4.12.9\"\n\nReferences\n==========\n\n[ 1 ] CVE-2020-14318\n       https://nvd.nist.gov/vuln/detail/CVE-2020-14318\n[ 2 ] CVE-2020-14323\n       https://nvd.nist.gov/vuln/detail/CVE-2020-14323\n[ 3 ] CVE-2020-14383\n       https://nvd.nist.gov/vuln/detail/CVE-2020-14383\n[ 4 ] CVE-2020-1472\n       https://nvd.nist.gov/vuln/detail/CVE-2020-1472\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n  https://security.gentoo.org/glsa/202012-24\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2020 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttps://creativecommons.org/licenses/by-sa/2.5\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Moderate: samba security and bug fix update\nAdvisory ID:       RHSA-2020:5439-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://access.redhat.com/errata/RHSA-2020:5439\nIssue date:        2020-12-15\nCVE Names:         CVE-2020-1472 CVE-2020-14318 CVE-2020-14323 \n=====================================================================\n\n1. Summary:\n\nAn update for samba is now available for Red Hat Enterprise Linux 7. \n\nRed Hat Product Security has rated this update as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available for each vulnerability from\nthe CVE link(s) in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Client (v. 7) - noarch, x86_64\nRed Hat Enterprise Linux Client Optional (v. 7) - noarch, x86_64\nRed Hat Enterprise Linux ComputeNode (v. 7) - noarch, x86_64\nRed Hat Enterprise Linux ComputeNode Optional (v. 7) - noarch, x86_64\nRed Hat Enterprise Linux Server (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Server Resilient Storage (v. 7) - ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 7) - noarch, x86_64\n\n3. Description:\n\nSamba is an open-source implementation of the Server Message Block (SMB)\nprotocol and the related Common Internet File System (CIFS) protocol, which\nallow PC-compatible machines to share files, printers, and various\ninformation. \n\nSecurity Fix(es):\n\n* samba: Netlogon elevation of privilege vulnerability (Zerologon)\n(CVE-2020-1472)\n\n* samba: Missing handle permissions check in SMB1/2/3 ChangeNotify\n(CVE-2020-14318)\n\n* samba: Unprivileged user can crash winbind (CVE-2020-14323)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section. \n\nBug Fix(es):\n\n* The \u0027require_membership_of\u0027 documentation in pam_winbind manpage is\nincorrect (BZ#1853272)\n\n* Malfunctioning %U substitution in valid users option (BZ#1868917)\n\n* Regression: smbd and nmbd are restarted when samba-winbind package is\nupgraded (BZ#1878205)\n\n* winbindd memory leak on wbinfo -u with security=ADS (BZ#1892313)\n\n4. Solution:\n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the smb service will be restarted\nautomatically. \n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1853272 - The \u0027require_membership_of\u0027 documentation in pam_winbind manpage is incorrect [rhel-7.9.z]\n1868917 - Malfunctioning %U substitution in valid users option [rhel-7.9.z]\n1878205 - Regression: smbd and nmbd are restarted when samba-winbind package is upgraded [rhel-7.9.z]\n1879822 - CVE-2020-1472 samba: Netlogon elevation of privilege vulnerability (Zerologon)\n1891685 - CVE-2020-14323 samba: Unprivileged user can crash winbind\n1892313 - winbindd memory leak on wbinfo -u with security=ADS [rhel-7.9.z]\n1892631 - CVE-2020-14318 samba: Missing handle permissions check in SMB1/2/3 ChangeNotify\n\n6. Package List:\n\nRed Hat Enterprise Linux Client (v. 7):\n\nSource:\nsamba-4.10.16-9.el7_9.src.rpm\n\nnoarch:\nsamba-common-4.10.16-9.el7_9.noarch.rpm\n\nx86_64:\nlibsmbclient-4.10.16-9.el7_9.i686.rpm\nlibsmbclient-4.10.16-9.el7_9.x86_64.rpm\nlibwbclient-4.10.16-9.el7_9.i686.rpm\nlibwbclient-4.10.16-9.el7_9.x86_64.rpm\nsamba-client-4.10.16-9.el7_9.x86_64.rpm\nsamba-client-libs-4.10.16-9.el7_9.i686.rpm\nsamba-client-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-common-libs-4.10.16-9.el7_9.i686.rpm\nsamba-common-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-common-tools-4.10.16-9.el7_9.x86_64.rpm\nsamba-debuginfo-4.10.16-9.el7_9.i686.rpm\nsamba-debuginfo-4.10.16-9.el7_9.x86_64.rpm\nsamba-krb5-printing-4.10.16-9.el7_9.x86_64.rpm\nsamba-libs-4.10.16-9.el7_9.i686.rpm\nsamba-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-clients-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-modules-4.10.16-9.el7_9.i686.rpm\nsamba-winbind-modules-4.10.16-9.el7_9.x86_64.rpm\n\nRed Hat Enterprise Linux Client Optional (v. 7):\n\nnoarch:\nsamba-pidl-4.10.16-9.el7_9.noarch.rpm\n\nx86_64:\nlibsmbclient-devel-4.10.16-9.el7_9.i686.rpm\nlibsmbclient-devel-4.10.16-9.el7_9.x86_64.rpm\nlibwbclient-devel-4.10.16-9.el7_9.i686.rpm\nlibwbclient-devel-4.10.16-9.el7_9.x86_64.rpm\nsamba-4.10.16-9.el7_9.x86_64.rpm\nsamba-dc-4.10.16-9.el7_9.x86_64.rpm\nsamba-dc-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-debuginfo-4.10.16-9.el7_9.i686.rpm\nsamba-debuginfo-4.10.16-9.el7_9.x86_64.rpm\nsamba-devel-4.10.16-9.el7_9.i686.rpm\nsamba-devel-4.10.16-9.el7_9.x86_64.rpm\nsamba-python-4.10.16-9.el7_9.i686.rpm\nsamba-python-4.10.16-9.el7_9.x86_64.rpm\nsamba-python-test-4.10.16-9.el7_9.x86_64.rpm\nsamba-test-4.10.16-9.el7_9.x86_64.rpm\nsamba-test-libs-4.10.16-9.el7_9.i686.rpm\nsamba-test-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-vfs-glusterfs-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-krb5-locator-4.10.16-9.el7_9.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode (v. 7):\n\nSource:\nsamba-4.10.16-9.el7_9.src.rpm\n\nnoarch:\nsamba-common-4.10.16-9.el7_9.noarch.rpm\n\nx86_64:\nlibsmbclient-4.10.16-9.el7_9.i686.rpm\nlibsmbclient-4.10.16-9.el7_9.x86_64.rpm\nlibwbclient-4.10.16-9.el7_9.i686.rpm\nlibwbclient-4.10.16-9.el7_9.x86_64.rpm\nsamba-client-4.10.16-9.el7_9.x86_64.rpm\nsamba-client-libs-4.10.16-9.el7_9.i686.rpm\nsamba-client-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-common-libs-4.10.16-9.el7_9.i686.rpm\nsamba-common-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-common-tools-4.10.16-9.el7_9.x86_64.rpm\nsamba-debuginfo-4.10.16-9.el7_9.i686.rpm\nsamba-debuginfo-4.10.16-9.el7_9.x86_64.rpm\nsamba-libs-4.10.16-9.el7_9.i686.rpm\nsamba-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-clients-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-modules-4.10.16-9.el7_9.i686.rpm\nsamba-winbind-modules-4.10.16-9.el7_9.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode Optional (v. 7):\n\nnoarch:\nsamba-pidl-4.10.16-9.el7_9.noarch.rpm\n\nx86_64:\nlibsmbclient-devel-4.10.16-9.el7_9.i686.rpm\nlibsmbclient-devel-4.10.16-9.el7_9.x86_64.rpm\nlibwbclient-devel-4.10.16-9.el7_9.i686.rpm\nlibwbclient-devel-4.10.16-9.el7_9.x86_64.rpm\nsamba-4.10.16-9.el7_9.x86_64.rpm\nsamba-dc-4.10.16-9.el7_9.x86_64.rpm\nsamba-dc-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-debuginfo-4.10.16-9.el7_9.i686.rpm\nsamba-debuginfo-4.10.16-9.el7_9.x86_64.rpm\nsamba-devel-4.10.16-9.el7_9.i686.rpm\nsamba-devel-4.10.16-9.el7_9.x86_64.rpm\nsamba-krb5-printing-4.10.16-9.el7_9.x86_64.rpm\nsamba-python-4.10.16-9.el7_9.i686.rpm\nsamba-python-4.10.16-9.el7_9.x86_64.rpm\nsamba-python-test-4.10.16-9.el7_9.x86_64.rpm\nsamba-test-4.10.16-9.el7_9.x86_64.rpm\nsamba-test-libs-4.10.16-9.el7_9.i686.rpm\nsamba-test-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-vfs-glusterfs-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-krb5-locator-4.10.16-9.el7_9.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 7):\n\nSource:\nsamba-4.10.16-9.el7_9.src.rpm\n\nnoarch:\nsamba-common-4.10.16-9.el7_9.noarch.rpm\n\nppc64:\nlibsmbclient-4.10.16-9.el7_9.ppc.rpm\nlibsmbclient-4.10.16-9.el7_9.ppc64.rpm\nlibwbclient-4.10.16-9.el7_9.ppc.rpm\nlibwbclient-4.10.16-9.el7_9.ppc64.rpm\nsamba-4.10.16-9.el7_9.ppc64.rpm\nsamba-client-4.10.16-9.el7_9.ppc64.rpm\nsamba-client-libs-4.10.16-9.el7_9.ppc.rpm\nsamba-client-libs-4.10.16-9.el7_9.ppc64.rpm\nsamba-common-libs-4.10.16-9.el7_9.ppc.rpm\nsamba-common-libs-4.10.16-9.el7_9.ppc64.rpm\nsamba-common-tools-4.10.16-9.el7_9.ppc64.rpm\nsamba-debuginfo-4.10.16-9.el7_9.ppc.rpm\nsamba-debuginfo-4.10.16-9.el7_9.ppc64.rpm\nsamba-krb5-printing-4.10.16-9.el7_9.ppc64.rpm\nsamba-libs-4.10.16-9.el7_9.ppc.rpm\nsamba-libs-4.10.16-9.el7_9.ppc64.rpm\nsamba-winbind-4.10.16-9.el7_9.ppc64.rpm\nsamba-winbind-clients-4.10.16-9.el7_9.ppc64.rpm\nsamba-winbind-modules-4.10.16-9.el7_9.ppc.rpm\nsamba-winbind-modules-4.10.16-9.el7_9.ppc64.rpm\n\nppc64le:\nlibsmbclient-4.10.16-9.el7_9.ppc64le.rpm\nlibwbclient-4.10.16-9.el7_9.ppc64le.rpm\nsamba-4.10.16-9.el7_9.ppc64le.rpm\nsamba-client-4.10.16-9.el7_9.ppc64le.rpm\nsamba-client-libs-4.10.16-9.el7_9.ppc64le.rpm\nsamba-common-libs-4.10.16-9.el7_9.ppc64le.rpm\nsamba-common-tools-4.10.16-9.el7_9.ppc64le.rpm\nsamba-debuginfo-4.10.16-9.el7_9.ppc64le.rpm\nsamba-krb5-printing-4.10.16-9.el7_9.ppc64le.rpm\nsamba-libs-4.10.16-9.el7_9.ppc64le.rpm\nsamba-winbind-4.10.16-9.el7_9.ppc64le.rpm\nsamba-winbind-clients-4.10.16-9.el7_9.ppc64le.rpm\nsamba-winbind-modules-4.10.16-9.el7_9.ppc64le.rpm\n\ns390x:\nlibsmbclient-4.10.16-9.el7_9.s390.rpm\nlibsmbclient-4.10.16-9.el7_9.s390x.rpm\nlibwbclient-4.10.16-9.el7_9.s390.rpm\nlibwbclient-4.10.16-9.el7_9.s390x.rpm\nsamba-4.10.16-9.el7_9.s390x.rpm\nsamba-client-4.10.16-9.el7_9.s390x.rpm\nsamba-client-libs-4.10.16-9.el7_9.s390.rpm\nsamba-client-libs-4.10.16-9.el7_9.s390x.rpm\nsamba-common-libs-4.10.16-9.el7_9.s390.rpm\nsamba-common-libs-4.10.16-9.el7_9.s390x.rpm\nsamba-common-tools-4.10.16-9.el7_9.s390x.rpm\nsamba-debuginfo-4.10.16-9.el7_9.s390.rpm\nsamba-debuginfo-4.10.16-9.el7_9.s390x.rpm\nsamba-krb5-printing-4.10.16-9.el7_9.s390x.rpm\nsamba-libs-4.10.16-9.el7_9.s390.rpm\nsamba-libs-4.10.16-9.el7_9.s390x.rpm\nsamba-winbind-4.10.16-9.el7_9.s390x.rpm\nsamba-winbind-clients-4.10.16-9.el7_9.s390x.rpm\nsamba-winbind-modules-4.10.16-9.el7_9.s390.rpm\nsamba-winbind-modules-4.10.16-9.el7_9.s390x.rpm\n\nx86_64:\nlibsmbclient-4.10.16-9.el7_9.i686.rpm\nlibsmbclient-4.10.16-9.el7_9.x86_64.rpm\nlibwbclient-4.10.16-9.el7_9.i686.rpm\nlibwbclient-4.10.16-9.el7_9.x86_64.rpm\nsamba-4.10.16-9.el7_9.x86_64.rpm\nsamba-client-4.10.16-9.el7_9.x86_64.rpm\nsamba-client-libs-4.10.16-9.el7_9.i686.rpm\nsamba-client-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-common-libs-4.10.16-9.el7_9.i686.rpm\nsamba-common-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-common-tools-4.10.16-9.el7_9.x86_64.rpm\nsamba-debuginfo-4.10.16-9.el7_9.i686.rpm\nsamba-debuginfo-4.10.16-9.el7_9.x86_64.rpm\nsamba-krb5-printing-4.10.16-9.el7_9.x86_64.rpm\nsamba-libs-4.10.16-9.el7_9.i686.rpm\nsamba-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-python-4.10.16-9.el7_9.i686.rpm\nsamba-python-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-clients-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-modules-4.10.16-9.el7_9.i686.rpm\nsamba-winbind-modules-4.10.16-9.el7_9.x86_64.rpm\n\nRed Hat Enterprise Linux Server Resilient Storage (v. 7):\n\nppc64le:\nctdb-4.10.16-9.el7_9.ppc64le.rpm\nctdb-tests-4.10.16-9.el7_9.ppc64le.rpm\nsamba-debuginfo-4.10.16-9.el7_9.ppc64le.rpm\n\ns390x:\nctdb-4.10.16-9.el7_9.s390x.rpm\nctdb-tests-4.10.16-9.el7_9.s390x.rpm\nsamba-debuginfo-4.10.16-9.el7_9.s390x.rpm\n\nx86_64:\nctdb-4.10.16-9.el7_9.x86_64.rpm\nctdb-tests-4.10.16-9.el7_9.x86_64.rpm\nsamba-debuginfo-4.10.16-9.el7_9.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 7):\n\nnoarch:\nsamba-pidl-4.10.16-9.el7_9.noarch.rpm\n\nppc64:\nlibsmbclient-devel-4.10.16-9.el7_9.ppc.rpm\nlibsmbclient-devel-4.10.16-9.el7_9.ppc64.rpm\nlibwbclient-devel-4.10.16-9.el7_9.ppc.rpm\nlibwbclient-devel-4.10.16-9.el7_9.ppc64.rpm\nsamba-dc-4.10.16-9.el7_9.ppc64.rpm\nsamba-dc-libs-4.10.16-9.el7_9.ppc64.rpm\nsamba-debuginfo-4.10.16-9.el7_9.ppc.rpm\nsamba-debuginfo-4.10.16-9.el7_9.ppc64.rpm\nsamba-devel-4.10.16-9.el7_9.ppc.rpm\nsamba-devel-4.10.16-9.el7_9.ppc64.rpm\nsamba-python-4.10.16-9.el7_9.ppc.rpm\nsamba-python-4.10.16-9.el7_9.ppc64.rpm\nsamba-python-test-4.10.16-9.el7_9.ppc64.rpm\nsamba-test-4.10.16-9.el7_9.ppc64.rpm\nsamba-test-libs-4.10.16-9.el7_9.ppc.rpm\nsamba-test-libs-4.10.16-9.el7_9.ppc64.rpm\nsamba-winbind-krb5-locator-4.10.16-9.el7_9.ppc64.rpm\n\nppc64le:\nlibsmbclient-devel-4.10.16-9.el7_9.ppc64le.rpm\nlibwbclient-devel-4.10.16-9.el7_9.ppc64le.rpm\nsamba-dc-4.10.16-9.el7_9.ppc64le.rpm\nsamba-dc-libs-4.10.16-9.el7_9.ppc64le.rpm\nsamba-debuginfo-4.10.16-9.el7_9.ppc64le.rpm\nsamba-devel-4.10.16-9.el7_9.ppc64le.rpm\nsamba-python-4.10.16-9.el7_9.ppc64le.rpm\nsamba-python-test-4.10.16-9.el7_9.ppc64le.rpm\nsamba-test-4.10.16-9.el7_9.ppc64le.rpm\nsamba-test-libs-4.10.16-9.el7_9.ppc64le.rpm\nsamba-winbind-krb5-locator-4.10.16-9.el7_9.ppc64le.rpm\n\ns390x:\nlibsmbclient-devel-4.10.16-9.el7_9.s390.rpm\nlibsmbclient-devel-4.10.16-9.el7_9.s390x.rpm\nlibwbclient-devel-4.10.16-9.el7_9.s390.rpm\nlibwbclient-devel-4.10.16-9.el7_9.s390x.rpm\nsamba-dc-4.10.16-9.el7_9.s390x.rpm\nsamba-dc-libs-4.10.16-9.el7_9.s390x.rpm\nsamba-debuginfo-4.10.16-9.el7_9.s390.rpm\nsamba-debuginfo-4.10.16-9.el7_9.s390x.rpm\nsamba-devel-4.10.16-9.el7_9.s390.rpm\nsamba-devel-4.10.16-9.el7_9.s390x.rpm\nsamba-python-4.10.16-9.el7_9.s390.rpm\nsamba-python-4.10.16-9.el7_9.s390x.rpm\nsamba-python-test-4.10.16-9.el7_9.s390x.rpm\nsamba-test-4.10.16-9.el7_9.s390x.rpm\nsamba-test-libs-4.10.16-9.el7_9.s390.rpm\nsamba-test-libs-4.10.16-9.el7_9.s390x.rpm\nsamba-winbind-krb5-locator-4.10.16-9.el7_9.s390x.rpm\n\nx86_64:\nlibsmbclient-devel-4.10.16-9.el7_9.i686.rpm\nlibsmbclient-devel-4.10.16-9.el7_9.x86_64.rpm\nlibwbclient-devel-4.10.16-9.el7_9.i686.rpm\nlibwbclient-devel-4.10.16-9.el7_9.x86_64.rpm\nsamba-dc-4.10.16-9.el7_9.x86_64.rpm\nsamba-dc-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-debuginfo-4.10.16-9.el7_9.i686.rpm\nsamba-debuginfo-4.10.16-9.el7_9.x86_64.rpm\nsamba-devel-4.10.16-9.el7_9.i686.rpm\nsamba-devel-4.10.16-9.el7_9.x86_64.rpm\nsamba-python-test-4.10.16-9.el7_9.x86_64.rpm\nsamba-test-4.10.16-9.el7_9.x86_64.rpm\nsamba-test-libs-4.10.16-9.el7_9.i686.rpm\nsamba-test-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-vfs-glusterfs-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-krb5-locator-4.10.16-9.el7_9.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 7):\n\nSource:\nsamba-4.10.16-9.el7_9.src.rpm\n\nnoarch:\nsamba-common-4.10.16-9.el7_9.noarch.rpm\n\nx86_64:\nlibsmbclient-4.10.16-9.el7_9.i686.rpm\nlibsmbclient-4.10.16-9.el7_9.x86_64.rpm\nlibwbclient-4.10.16-9.el7_9.i686.rpm\nlibwbclient-4.10.16-9.el7_9.x86_64.rpm\nsamba-4.10.16-9.el7_9.x86_64.rpm\nsamba-client-4.10.16-9.el7_9.x86_64.rpm\nsamba-client-libs-4.10.16-9.el7_9.i686.rpm\nsamba-client-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-common-libs-4.10.16-9.el7_9.i686.rpm\nsamba-common-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-common-tools-4.10.16-9.el7_9.x86_64.rpm\nsamba-debuginfo-4.10.16-9.el7_9.i686.rpm\nsamba-debuginfo-4.10.16-9.el7_9.x86_64.rpm\nsamba-krb5-printing-4.10.16-9.el7_9.x86_64.rpm\nsamba-libs-4.10.16-9.el7_9.i686.rpm\nsamba-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-python-4.10.16-9.el7_9.i686.rpm\nsamba-python-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-clients-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-modules-4.10.16-9.el7_9.i686.rpm\nsamba-winbind-modules-4.10.16-9.el7_9.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 7):\n\nnoarch:\nsamba-pidl-4.10.16-9.el7_9.noarch.rpm\n\nx86_64:\nlibsmbclient-devel-4.10.16-9.el7_9.i686.rpm\nlibsmbclient-devel-4.10.16-9.el7_9.x86_64.rpm\nlibwbclient-devel-4.10.16-9.el7_9.i686.rpm\nlibwbclient-devel-4.10.16-9.el7_9.x86_64.rpm\nsamba-dc-4.10.16-9.el7_9.x86_64.rpm\nsamba-dc-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-debuginfo-4.10.16-9.el7_9.i686.rpm\nsamba-debuginfo-4.10.16-9.el7_9.x86_64.rpm\nsamba-devel-4.10.16-9.el7_9.i686.rpm\nsamba-devel-4.10.16-9.el7_9.x86_64.rpm\nsamba-python-test-4.10.16-9.el7_9.x86_64.rpm\nsamba-test-4.10.16-9.el7_9.x86_64.rpm\nsamba-test-libs-4.10.16-9.el7_9.i686.rpm\nsamba-test-libs-4.10.16-9.el7_9.x86_64.rpm\nsamba-vfs-glusterfs-4.10.16-9.el7_9.x86_64.rpm\nsamba-winbind-krb5-locator-4.10.16-9.el7_9.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2020-1472\nhttps://access.redhat.com/security/cve/CVE-2020-14318\nhttps://access.redhat.com/security/cve/CVE-2020-14323\nhttps://access.redhat.com/security/updates/classification/#moderate\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2020 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n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\n2lNVzS89G3A=\n=hQrq\n-----END PGP SIGNATURE-----\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. =========================================================================\nUbuntu Security Notice USN-4510-2\nSeptember 17, 2020\n\nsamba vulnerability\n=========================================================================\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 14.04 ESM\n\nSummary:\n\nSamba would allow unintended access to files over the network. \n\nSoftware Description:\n- samba: SMB/CIFS file, print, and login server for Unix\n\nDetails:\n\nUSN-4510-1 fixed a vulnerability in Samba. This update provides\nthe corresponding update for Ubuntu 14.04 ESM. \n\nOriginal advisory details:\n\n Tom Tervoort discovered that the Netlogon protocol implemented by Samba\n incorrectly handled the authentication scheme. \n\n This update fixes the issue by changing the \"server schannel\" setting to\n default to \"yes\", instead of \"auto\", which will force a secure netlogon\n channel. This may result in compatibility issues with older devices. A\n future update may allow a finer-grained control over this setting. \n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 14.04 ESM:\n  samba                           2:4.3.11+dfsg-0ubuntu0.14.04.20+esm9\n\nIn general, a standard system update will make all the necessary changes. See the following link for\nexamples: https://www.samba.org/samba/security/CVE-2020-1472.html\n\nIn addition, this update adds additional server checks for the protocol\nattack in the client-specified challenge to provide some protection when\n\u0027server schannel = no/auto\u0027 and avoid the false-positive results when\nrunning the proof-of-concept exploit",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2020-1472"
      },
      {
        "db": "CERT/CC",
        "id": "VU#490028"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-008530"
      },
      {
        "db": "VULHUB",
        "id": "VHN-167626"
      },
      {
        "db": "VULMON",
        "id": "CVE-2020-1472"
      },
      {
        "db": "PACKETSTORM",
        "id": "162645"
      },
      {
        "db": "PACKETSTORM",
        "id": "160717"
      },
      {
        "db": "PACKETSTORM",
        "id": "159206"
      },
      {
        "db": "PACKETSTORM",
        "id": "160507"
      },
      {
        "db": "PACKETSTORM",
        "id": "159207"
      },
      {
        "db": "PACKETSTORM",
        "id": "159414"
      }
    ],
    "trust": 3.06
  },
  "exploit_availability": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "reference": "https://www.scap.org.cn/vuln/vhn-167626",
        "trust": 0.1,
        "type": "unknown"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-167626"
      }
    ]
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2020-1472",
        "trust": 4.8
      },
      {
        "db": "CERT/CC",
        "id": "VU#490028",
        "trust": 2.5
      },
      {
        "db": "PACKETSTORM",
        "id": "160127",
        "trust": 1.7
      },
      {
        "db": "PACKETSTORM",
        "id": "159190",
        "trust": 1.7
      },
      {
        "db": "OPENWALL",
        "id": "OSS-SECURITY/2020/09/17/2",
        "trust": 1.7
      },
      {
        "db": "PACKETSTORM",
        "id": "160507",
        "trust": 0.8
      },
      {
        "db": "PACKETSTORM",
        "id": "162645",
        "trust": 0.8
      },
      {
        "db": "PACKETSTORM",
        "id": "159207",
        "trust": 0.8
      },
      {
        "db": "PACKETSTORM",
        "id": "160717",
        "trust": 0.8
      },
      {
        "db": "PACKETSTORM",
        "id": "159414",
        "trust": 0.8
      },
      {
        "db": "JVN",
        "id": "JVNVU95778184",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-008530",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202008-548",
        "trust": 0.7
      },
      {
        "db": "EXPLOIT-DB",
        "id": "49071",
        "trust": 0.7
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2020.4143",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.2604",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2020.3188",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2022.6539",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2020.3219",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2020.3239",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.2781",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2020.3417",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2020.4436",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.3303",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.1706",
        "trust": 0.6
      },
      {
        "db": "PACKETSTORM",
        "id": "160823",
        "trust": 0.6
      },
      {
        "db": "PACKETSTORM",
        "id": "164406",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2021100615",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2021052030",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2021042837",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2021063032",
        "trust": 0.6
      },
      {
        "db": "NSFOCUS",
        "id": "48189",
        "trust": 0.6
      },
      {
        "db": "NSFOCUS",
        "id": "48563",
        "trust": 0.6
      },
      {
        "db": "CXSECURITY",
        "id": "WLB-2020110151",
        "trust": 0.6
      },
      {
        "db": "PACKETSTORM",
        "id": "159206",
        "trust": 0.2
      },
      {
        "db": "SEEBUG",
        "id": "SSVID-98378",
        "trust": 0.1
      },
      {
        "db": "VULHUB",
        "id": "VHN-167626",
        "trust": 0.1
      },
      {
        "db": "VULMON",
        "id": "CVE-2020-1472",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#490028"
      },
      {
        "db": "VULHUB",
        "id": "VHN-167626"
      },
      {
        "db": "VULMON",
        "id": "CVE-2020-1472"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-008530"
      },
      {
        "db": "PACKETSTORM",
        "id": "162645"
      },
      {
        "db": "PACKETSTORM",
        "id": "160717"
      },
      {
        "db": "PACKETSTORM",
        "id": "159206"
      },
      {
        "db": "PACKETSTORM",
        "id": "160507"
      },
      {
        "db": "PACKETSTORM",
        "id": "159207"
      },
      {
        "db": "PACKETSTORM",
        "id": "159414"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202008-548"
      },
      {
        "db": "NVD",
        "id": "CVE-2020-1472"
      }
    ]
  },
  "id": "VAR-202008-0248",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-167626"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2024-11-29T22:25:50.715000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "CVE-2020-1472\u00a0|\u00a0Netlogon\u00a0Elevation\u00a0of\u00a0Privilege\u00a0Vulnerability Security Update Guide",
        "trust": 0.8,
        "url": "https://techcommunity.microsoft.com/t5/microsoft-365-defender/zerologon-is-now-detected-by-microsoft-defender-for-identity-cve/ba-p/1734034"
      },
      {
        "title": "Red Hat: Moderate: samba security and bug fix update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20205439 - Security Advisory"
      },
      {
        "title": "Debian CVElist Bug Report Logs: samba: CVE-2020-1472",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=158adc4a67e7a9fc23bf2da40547c403"
      },
      {
        "title": "Arch Linux Issues: ",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_issues\u0026qid=CVE-2020-1472 log"
      },
      {
        "title": "Amazon Linux AMI: ALAS-2021-1469",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2021-1469"
      },
      {
        "title": "CVE-2020-1472 POC",
        "trust": 0.1,
        "url": "https://github.com/Fa1c0n35/CVE-2020-1472 "
      },
      {
        "title": "https://github.com/murataydemir/CVE-2020-1472",
        "trust": 0.1,
        "url": "https://github.com/murataydemir/CVE-2020-1472 "
      },
      {
        "title": "CVE-2020-1472 POC",
        "trust": 0.1,
        "url": "https://github.com/npocmak/CVE-2020-1472 "
      },
      {
        "title": "CVE-2020-1472\nExploit",
        "trust": 0.1,
        "url": "https://github.com/VoidSec/CVE-2020-1472 "
      },
      {
        "title": "CVE-2020-1472",
        "trust": 0.1,
        "url": "https://github.com/sv3nbeast/CVE-2020-1472 "
      }
    ],
    "sources": [
      {
        "db": "VULMON",
        "id": "CVE-2020-1472"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-008530"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-330",
        "trust": 1.1
      },
      {
        "problemtype": "Insufficient use of random values (CWE-330) [NVD evaluation ]",
        "trust": 0.8
      },
      {
        "problemtype": "CWE-269",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-167626"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-008530"
      },
      {
        "db": "NVD",
        "id": "CVE-2020-1472"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.3,
        "url": "https://www.kb.cert.org/vuls/id/490028"
      },
      {
        "trust": 2.3,
        "url": "http://packetstormsecurity.com/files/159190/zerologon-proof-of-concept.html"
      },
      {
        "trust": 2.3,
        "url": "http://packetstormsecurity.com/files/160127/zerologon-netlogon-privilege-escalation.html"
      },
      {
        "trust": 2.3,
        "url": "https://www.oracle.com/security-alerts/cpuapr2021.html"
      },
      {
        "trust": 2.0,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2020-1472"
      },
      {
        "trust": 1.8,
        "url": "https://security.gentoo.org/glsa/202012-24"
      },
      {
        "trust": 1.7,
        "url": "https://www.synology.com/security/advisory/synology_sa_20_21"
      },
      {
        "trust": 1.7,
        "url": "https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/cve-2020-1472"
      },
      {
        "trust": 1.7,
        "url": "https://lists.debian.org/debian-lts-announce/2020/11/msg00041.html"
      },
      {
        "trust": 1.7,
        "url": "http://www.openwall.com/lists/oss-security/2020/09/17/2"
      },
      {
        "trust": 1.7,
        "url": "http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00080.html"
      },
      {
        "trust": 1.7,
        "url": "http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00086.html"
      },
      {
        "trust": 1.7,
        "url": "https://usn.ubuntu.com/4510-1/"
      },
      {
        "trust": 1.7,
        "url": "https://usn.ubuntu.com/4510-2/"
      },
      {
        "trust": 1.7,
        "url": "https://usn.ubuntu.com/4559-1/"
      },
      {
        "trust": 1.0,
        "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/tapqqzzat4tg3xvrtafv2y3s7oahfbup/"
      },
      {
        "trust": 1.0,
        "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/st6x3a2xxymgd4inr26dq4fp4qsm753b/"
      },
      {
        "trust": 1.0,
        "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/h4otfbl6ydvfh2tbjfjie4fmhpjeejk3/"
      },
      {
        "trust": 0.8,
        "url": "cve-2020-1472  "
      },
      {
        "trust": 0.8,
        "url": "https://jvn.jp/vu/jvnvu95778184/"
      },
      {
        "trust": 0.8,
        "url": "https://www.ipa.go.jp/security/ciadr/vul/20200812-ms.html"
      },
      {
        "trust": 0.8,
        "url": "https://www.jpcert.or.jp/at/2020/at200033.html"
      },
      {
        "trust": 0.8,
        "url": "https://cisa.gov/known-exploited-vulnerabilities-catalog"
      },
      {
        "trust": 0.7,
        "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/h4otfbl6ydvfh2tbjfjie4fmhpjeejk3/"
      },
      {
        "trust": 0.7,
        "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/tapqqzzat4tg3xvrtafv2y3s7oahfbup/"
      },
      {
        "trust": 0.7,
        "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/st6x3a2xxymgd4inr26dq4fp4qsm753b/"
      },
      {
        "trust": 0.6,
        "url": "https://media.cert.europa.eu/static/securityadvisories/2020/cert-eu-sa2020-046.pdf"
      },
      {
        "trust": 0.6,
        "url": "https://www.ibm.com/blogs/psirt/security-bulletin-publicly-disclosed-vulnerability-from-samba-affects-ibm-netezza-host-management/"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.1706"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/162645/red-hat-security-advisory-2021-1647-01.html"
      },
      {
        "trust": 0.6,
        "url": "https://portal.msrc.microsoft.com/zh-cn/security-guidance/advisory/cve-2020-1472"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2021052030"
      },
      {
        "trust": 0.6,
        "url": "https://vigilance.fr/vulnerability/microsoft-windows-vulnerabilities-of-august-2020-33057"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/164406/red-hat-security-advisory-2021-3723-01.html"
      },
      {
        "trust": 0.6,
        "url": "https://cxsecurity.com/issue/wlb-2020110151"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2020.4143/"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.2781"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/160823/understanding-and-exploiting-zerologon.html"
      },
      {
        "trust": 0.6,
        "url": "https://www.huawei.com/cn/psirt/security-notices/huawei-sn-20200925-01-netlogon-cn"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2020.4436/"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2021063032"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/160507/red-hat-security-advisory-2020-5439-01.html"
      },
      {
        "trust": 0.6,
        "url": "http://www.nsfocus.net/vulndb/48189"
      },
      {
        "trust": 0.6,
        "url": "http://www.nsfocus.net/vulndb/48563"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/160717/gentoo-linux-security-advisory-202012-24.html"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2020.3417/"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2020.3219/"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2022.6539"
      },
      {
        "trust": 0.6,
        "url": "https://vigilance.fr/vulnerability/microsoft-windows-samba-privilege-escalation-via-active-directory-domain-services-zerologon-33336"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2020.3239/"
      },
      {
        "trust": 0.6,
        "url": "https://www.exploit-db.com/exploits/49071"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2021042837"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.2604"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/159207/ubuntu-security-notice-usn-4510-2.html"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.3303"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2021100615"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/159414/ubuntu-security-notice-usn-4559-1.html"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2020.3188/"
      },
      {
        "trust": 0.3,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2020-14323"
      },
      {
        "trust": 0.3,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2020-14318"
      },
      {
        "trust": 0.2,
        "url": "https://access.redhat.com/security/cve/cve-2020-14318"
      },
      {
        "trust": 0.2,
        "url": "https://access.redhat.com/security/cve/cve-2020-14323"
      },
      {
        "trust": 0.2,
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "trust": 0.2,
        "url": "https://access.redhat.com/articles/11258"
      },
      {
        "trust": 0.2,
        "url": "https://access.redhat.com/security/team/key/"
      },
      {
        "trust": 0.2,
        "url": "https://access.redhat.com/security/cve/cve-2020-1472"
      },
      {
        "trust": 0.2,
        "url": "https://bugzilla.redhat.com/):"
      },
      {
        "trust": 0.2,
        "url": "https://access.redhat.com/security/team/contact/"
      },
      {
        "trust": 0.2,
        "url": "https://usn.ubuntu.com/4510-1"
      },
      {
        "trust": 0.1,
        "url": "https://listman.redhat.com/mailman/listinfo/rhsa-announce"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/errata/rhsa-2021:1647"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/articles/5435971"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2020-14383"
      },
      {
        "trust": 0.1,
        "url": "https://creativecommons.org/licenses/by-sa/2.5"
      },
      {
        "trust": 0.1,
        "url": "https://security.gentoo.org/"
      },
      {
        "trust": 0.1,
        "url": "https://bugs.gentoo.org."
      },
      {
        "trust": 0.1,
        "url": "https://launchpad.net/ubuntu/+source/samba/2:4.7.6+dfsg~ubuntu-0ubuntu2.19"
      },
      {
        "trust": 0.1,
        "url": "https://launchpad.net/ubuntu/+source/samba/2:4.3.11+dfsg-0ubuntu0.16.04.30"
      },
      {
        "trust": 0.1,
        "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/errata/rhsa-2020:5439"
      },
      {
        "trust": 0.1,
        "url": "https://usn.ubuntu.com/4510-2"
      },
      {
        "trust": 0.1,
        "url": "https://www.samba.org/samba/security/cve-2020-1472.html"
      },
      {
        "trust": 0.1,
        "url": "https://usn.ubuntu.com/4559-1"
      },
      {
        "trust": 0.1,
        "url": "https://launchpad.net/ubuntu/+source/samba/2:4.3.11+dfsg-0ubuntu0.16.04.31"
      },
      {
        "trust": 0.1,
        "url": "https://launchpad.net/ubuntu/+source/samba/2:4.11.6+dfsg-0ubuntu1.5"
      },
      {
        "trust": 0.1,
        "url": "https://launchpad.net/ubuntu/+source/samba/2:4.7.6+dfsg~ubuntu-0ubuntu2.20"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#490028"
      },
      {
        "db": "VULHUB",
        "id": "VHN-167626"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-008530"
      },
      {
        "db": "PACKETSTORM",
        "id": "162645"
      },
      {
        "db": "PACKETSTORM",
        "id": "160717"
      },
      {
        "db": "PACKETSTORM",
        "id": "159206"
      },
      {
        "db": "PACKETSTORM",
        "id": "160507"
      },
      {
        "db": "PACKETSTORM",
        "id": "159207"
      },
      {
        "db": "PACKETSTORM",
        "id": "159414"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202008-548"
      },
      {
        "db": "NVD",
        "id": "CVE-2020-1472"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#490028"
      },
      {
        "db": "VULHUB",
        "id": "VHN-167626"
      },
      {
        "db": "VULMON",
        "id": "CVE-2020-1472"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-008530"
      },
      {
        "db": "PACKETSTORM",
        "id": "162645"
      },
      {
        "db": "PACKETSTORM",
        "id": "160717"
      },
      {
        "db": "PACKETSTORM",
        "id": "159206"
      },
      {
        "db": "PACKETSTORM",
        "id": "160507"
      },
      {
        "db": "PACKETSTORM",
        "id": "159207"
      },
      {
        "db": "PACKETSTORM",
        "id": "159414"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202008-548"
      },
      {
        "db": "NVD",
        "id": "CVE-2020-1472"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2020-09-16T00:00:00",
        "db": "CERT/CC",
        "id": "VU#490028"
      },
      {
        "date": "2020-08-17T00:00:00",
        "db": "VULHUB",
        "id": "VHN-167626"
      },
      {
        "date": "2020-08-17T00:00:00",
        "db": "VULMON",
        "id": "CVE-2020-1472"
      },
      {
        "date": "2020-09-15T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2020-008530"
      },
      {
        "date": "2021-05-19T14:02:40",
        "db": "PACKETSTORM",
        "id": "162645"
      },
      {
        "date": "2020-12-24T17:21:15",
        "db": "PACKETSTORM",
        "id": "160717"
      },
      {
        "date": "2020-09-17T14:07:24",
        "db": "PACKETSTORM",
        "id": "159206"
      },
      {
        "date": "2020-12-15T15:48:52",
        "db": "PACKETSTORM",
        "id": "160507"
      },
      {
        "date": "2020-09-17T14:07:32",
        "db": "PACKETSTORM",
        "id": "159207"
      },
      {
        "date": "2020-09-30T15:54:06",
        "db": "PACKETSTORM",
        "id": "159414"
      },
      {
        "date": "2020-08-11T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202008-548"
      },
      {
        "date": "2020-08-17T19:15:15.117000",
        "db": "NVD",
        "id": "CVE-2020-1472"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2021-03-19T00:00:00",
        "db": "CERT/CC",
        "id": "VU#490028"
      },
      {
        "date": "2022-04-26T00:00:00",
        "db": "VULHUB",
        "id": "VHN-167626"
      },
      {
        "date": "2024-01-19T00:00:00",
        "db": "VULMON",
        "id": "CVE-2020-1472"
      },
      {
        "date": "2024-02-21T01:01:00",
        "db": "JVNDB",
        "id": "JVNDB-2020-008530"
      },
      {
        "date": "2022-12-16T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202008-548"
      },
      {
        "date": "2024-11-21T05:10:37.640000",
        "db": "NVD",
        "id": "CVE-2020-1472"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "PACKETSTORM",
        "id": "159206"
      },
      {
        "db": "PACKETSTORM",
        "id": "159207"
      },
      {
        "db": "PACKETSTORM",
        "id": "159414"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202008-548"
      }
    ],
    "trust": 0.9
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Microsoft Windows Netlogon Remote Protocol (MS-NRPC) uses insecure AES-CFB8 initialization vector",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#490028"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "security feature problem",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-202008-548"
      }
    ],
    "trust": 0.6
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.