The Samba-Bugzilla – Attachment 14815 Details for
Bug 13773
CVE-2019-3824 [SECURITY] ldb: Out of bound read in ldb_wildcard_compare
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
Initial advisory
ldb-wildcard-sec-advisory.txt (text/plain), 1.79 KB, created by
Andrew Bartlett
on 2019-02-01 04:24:14 UTC
(
hide
)
Description:
Initial advisory
Filename:
MIME Type:
Creator:
Andrew Bartlett
Created:
2019-02-01 04:24:14 UTC
Size:
1.79 KB
patch
obsolete
>=========================================================== >== Subject: ldb: Out of bound read in ldb_wildcard_compare >== >== CVE ID#: >== >== Versions: Samba 4.9 and earlier >== >== Summary: A user with read permission on the LDAP server > can crash the shared LDAP server process of the Samba > AD DC >=========================================================== > >=========== >Description >=========== > >By using a search expression like (cn=test*multi*test*multi) an >authenticated user can crash the shared LDAP process of the AD DC > >Note that in Samba 4.7 and later, the default is not to have a >shared LDAP process, unless -M prefork or -M single is specified on >the command line to 'samba'. > >================== >Patch Availability >================== > >Patches addressing both these issues have been posted to: > > http://www.samba.org/samba/security/ > >Because Samba 4.7 and later use the 'standard' process model (forking) >by default, earlier versions are unsupported and no data is returned, >no Samba security releases will be made. > >Samba administrators are advised to upgrade to supported releases or apply >the patch as soon as possible. > >================== >CVSSv3 calculation >================== > >CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H > >========== >Workaround >========== > >If the Samba 4.7 or later AD DC is being run with the -M single or -M >prefork command line argument to the 'samba' binary, return to the >default (standard) mode. > >======= >Credits >======= > >Analysis by Garming Sam of Catalyst and the Samba Team > >Patches provided by Lukas Slebodnik of Red Hat, advisory by Andrew >Bartlett of Catalyst and the Samba Team. > >========================================================== >== Our Code, Our Bugs, Our Responsibility. >== The Samba Team >========================================================== >
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Raw
Actions:
View
Attachments on
bug 13773
:
14814
|
14815
|
14819
|
14845
|
14852
|
14853
|
14854
|
14855
|
14856
|
14857
|
14858
|
14859