The Samba-Bugzilla – Attachment 14460 Details for
Bug 13600
[SECURITY] CVE-2018-14629 CNAME loops in Samba AD DC DNS server
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
CVE for cname loop bug
cve-dns.txt (text/plain), 1.18 KB, created by
Aaron Haslett (dead mail address)
on 2018-09-03 05:23:43 UTC
(
hide
)
Description:
CVE for cname loop bug
Filename:
MIME Type:
Creator:
Aaron Haslett (dead mail address)
Created:
2018-09-03 05:23:43 UTC
Size:
1.18 KB
patch
obsolete
>==================================================================== >== Subject: Unprivileged adding of CNAME record causing loop >== in AD LDAP server >== >== CVE ID#: CVE-2018-XXXX >== >== Versions: All versions of Samba from 4.0.0 onwards. >== >== Summary: CNAME loops can cause DNS server crashes, and CNAMEs >== can be added by unprivileged users. >== >==================================================================== > >=========== >Description >=========== > >All versions of Samba from 4.0.0 onwards are vulnerable infinite query >recursion caused by CNAME loops. Any dns record can be added via ldap by an >unprivileged user using the ldbadd tool, so this is a security issue. > >================== >Patch Availability >================== > >No patch is currently availability. > >========== >Workaround >========== > >No workaround is possible while acting as a Samba AD DC. > >Disabling the 'ldap' services in the smb.conf (eg 'server services = >-ldap) would remove essential elements in the AD DC. > >======= >Credits >======= > >The initial bugs were found by the Andrew Bartlett of Catalyst. >Andrew Bartlett of Catalyst and the Samba Team did the investigation >and provided the final fix.
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Raw
Actions:
View
Attachments on
bug 13600
:
14460
|
14537
|
14572
|
14573
|
14574
|
14575
|
14594
|
14631
|
14632
|
14635
|
14636
|
14649
|
14667
|
14668
|
14670
|
14685
|
14691
|
14692
|
14693
|
14694
|
14696
|
14697
|
14704
|
14711
|
14712
|
14717
|
14719
|
14720
|
14724
|
17140