from 0, < 2:3.6.6-6+deb7u13
from 0, < 2:4.5.8+dfsg-2
CRITICAL9.8⚠ KEVsamba - security update
from 0, < 2:4.2.14+dfsg-0+deb8u6
MEDIUM5.5⚠ KEVMicrosoft Netlogon Privilege Escalation Vulnerability
from 0, < 2:4.13.2+dfsg-2
CRITICAL10.0A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without prope…
from 0
CRITICAL9.8samba - security update
from 0, < 2:4.17.12+dfsg-0+deb12u1
CRITICAL9.8samba - security update
from 0, < 2:4.17.12+dfsg-0+deb12u1
CRITICAL9.8Since the Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability was disclosed by Microsoft on Nov 8 2022 and per RFC8429 it is ass…
from 0
CRITICAL9.8Heimdal before 7.7.1 allows remote attackers to execute arbitrary code because of an invalid free in the ASN.1 codec used by the Key Distri…
from 0
CRITICAL9.8samba - security update
from 0, < 2:4.7.1+dfsg-2
CRITICAL9.8samba - security update
from 0, < 2:4.2.14+dfsg-0+deb8u9
CRITICAL9.1samba - security update
from 0, < 2:4.9.5+dfsg-5+deb10u1
CRITICAL9.1samba - security update
from 0, < 2:4.9.13+dfsg-1
CRITICAL9.0A flaw was found in Samba.
from 0
HIGH8.8krb5 - security update
from 0
HIGH8.8The Samba AD DC includes checks when adding service principals names (SPNs) to an account to ensure that SPNs do not alias with those alrea…
from 0, < 2:4.13.13+dfsg-1~deb11u3
HIGH8.8A flaw was found in Samba.
from 0, < 2:4.13.13+dfsg-1~deb11u5
HIGH8.8samba - security update
from 0, < 2:4.13.13+dfsg-1~deb11u5
HIGH8.8samba - security update
from 0, < 2:4.13.13+dfsg-1~deb11u5
HIGH8.8Kerberos acceptors need easy access to stable AD identifiers (eg objectSid).
from 0, < 2:4.13.13+dfsg-1~deb11u2
HIGH8.8In DCE/RPC it is possible to share the handles (cookies for resource state) between multiple connections via a mechanism called 'associatio…
from 0, < 2:4.13.13+dfsg-1~deb11u2
HIGH8.8samba - security update
from 0, < 2:4.13.13+dfsg-1~deb11u3
HIGH8.8samba - security update
from 0, < 2:4.9.5+dfsg-5+deb10u3
HIGH8.8Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data.
from 0, < 2:4.13.13+dfsg-1~deb11u2
HIGH8.8A flaw was found in the way samba, as an Active Directory Domain Controller, is able to support an RODC (read-only domain controller).
from 0, < 2:4.13.13+dfsg-1~deb11u2
HIGH8.8A flaw was found in samba versions 4.0.0 to 4.5.2.
from 0, < 2:4.5.2+dfsg-2
HIGH8.8samba - security update
from 0, < 2:4.5.12+dfsg-2+deb9u3
HIGH8.8samba - security update
from 0, < 2:4.2.14+dfsg-0+deb8u10
HIGH8.8samba - security update
from 0, < 2:4.8.4+dfsg-1
HIGH8.8On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly validates permissions to modify passwords over L…
from 0, < 2:4.7.4+dfsg-2
HIGH8.5A flaw was found in the Samba printing subsystem.
from 0
HIGH8.1Netlogon RPC Elevation of Privilege Vulnerability
from 0
HIGH8.1Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability
from 0
HIGH8.1A flaw was found in Samba.
from 0, < 2:4.13.13+dfsg-1~deb11u5
HIGH8.1samba - security update
from 0, < 2:4.9.5+dfsg-5+deb10u2
HIGH8.1samba - security update
from 0, < 2:4.13.13+dfsg-1~deb11u2
HIGH8.1A flaw was found in the way samba before 4.7.9 and 4.8.4 allowed the use of weak NTLMv1 authentication even when NTLMv1 was explicitly disa…
from 0, < 2:4.8.4+dfsg-1
HIGH8.1heimdal - security update
from 0, < 2:4.6.5+dfsg-4
HIGH8.1heimdal - security update
from 0, < 2:4.2.14+dfsg-0+deb8u7
HIGH8.0A flaw was found in Samba’s certificate auto-enrollment Group Policy handling.
from 0
HIGH7.5A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller.
from 0
HIGH7.5A vulnerability was found in Samba where a delegated administrator with permission to create objects in Active Directory can write to all a…
from 0
HIGH7.5An infinite loop vulnerability was found in Samba's mdssvc RPC service for Spotlight.
from 0, < 2:4.13.13+dfsg-1~deb11u6
HIGH7.5Samba does not validate the Validated-DNS-Host-Name right for the dNSHostName attribute which could permit unprivileged users to write it.
from 0
HIGH7.5A flaw was found in the way samba implemented DCE/RPC.
from 0, < 2:4.13.13+dfsg-1~deb11u2
HIGH7.5ldb - security update
from 0
HIGH7.5A flaw was found in Samba's libldb.
from 0
HIGH7.5A flaw was found in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4 in the way it processed NetBios over TCP/IP.
from 0, < 2:4.12.5+dfsg-1
HIGH7.5A flaw was found in the AD DC NBT server in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4.
from 0, < 2:4.12.5+dfsg-1
HIGH7.5samba - security update
from 0, < 2:4.5.16+dfsg-1+deb9u3
HIGH7.5samba - security update
from 0, < 2:4.12.3+dfsg-2
HIGH7.5heimdal - security update
from 0, < 2:4.5.16+dfsg-1+deb9u2
HIGH7.5heimdal - security update
from 0, < 2:4.9.5+dfsg-4
HIGH7.5heimdal - security update
from 0, < 2:4.2.14+dfsg-0+deb8u13
HIGH7.5samba - security update
from 0, < 2:4.2.14+dfsg-0+deb8u4
HIGH7.5samba - security update
from 0, < 2:3.6.6-6+deb7u12
HIGH7.5samba - security update
from 0, < 2:4.5.6+dfsg-2
HIGH7.5samba - security update
from 0, < 2:4.7.1+dfsg-2
HIGH7.5samba - security update
from 0, < 2:3.6.6-6+deb7u15
HIGH7.5samba - security update
from 0, < 2:4.2.14+dfsg-0+deb8u2
HIGH7.5samba - security update
from 0, < 2:4.4.5+dfsg-1
HIGH7.5The MS-SAMR and MS-LSAD protocol implementations in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 mishandle D…
from 0, < 2:4.3.7+dfsg-1
HIGH7.5The samldb_check_user_account_control_acl function in dsdb/samdb/ldb_modules/samldb.c in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4…
from 0, < 2:4.1.22+dfsg-1
HIGH7.5The LDAP server in the AD domain controller in Samba 4.x before 4.1.22 does not check return values to ensure successful ASN.1 memory alloc…
from 0, < 2:4.1.22+dfsg-1
HIGH7.5ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles string…
from 0, < 2:4.1.22+dfsg-1
HIGH7.4A flaw was found in the way samba client before samba 4.4.16, samba 4.5.14 and samba 4.6.8 used encryption with the max protocol set as SMB…
from 0, < 2:4.6.7+dfsg-2
HIGH7.4samba - security update
from 0, < 2:4.6.7+dfsg-2
HIGH7.4samba - security update
from 0, < 2:3.6.6-6+deb7u14
HIGH7.4samba - security update
from 0, < 2:4.2.14+dfsg-0+deb8u8
HIGH7.4Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not verify X.509 certificates from TLS servers, which allows man-i…
from 0, < 2:4.3.7+dfsg-1
HIGH7.2Windows Kerberos Elevation of Privilege Vulnerability
from 0
HIGH7.2A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name-based authentication.
from 0, < 2:4.13.13+dfsg-1~deb11u2
HIGH7.2samba - security update
from 0, < 2:3.5.6~dfsg-3squeeze13
HIGH7.2samba - security update
from 0, < 2:4.1.22+dfsg-1
HIGH7.1A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes.
from 0, < 2:4.22.8+dfsg-0+deb13u2
HIGH7.1An information leak flaw was found in the way SMB1 protocol was implemented by Samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4…
from 0, < 2:4.6.7+dfsg-2
MEDIUM6.8A flaw was found in the way Samba handled file/directory metadata.
from 0
MEDIUM6.8A flaw was found in samba.
from 0, < 2:4.13.5+dfsg-2
MEDIUM6.5A flaw was found in Samba’s vfs_worm module.
from 0
MEDIUM6.5A design flaw was found in Samba's DirSync control implementation, which exposes passwords and secrets in Active Directory to privileged us…
from 0
MEDIUM6.5A vulnerability was found in Samba's "rpcecho" development server, a non-Windows RPC server used to test Samba's DCE/RPC stack elements.
from 0
MEDIUM6.5A vulnerability was discovered in Samba, where the flaw allows SMB clients to truncate files, even with read-only permissions when the Samb…
from 0, < 2:4.13.13+dfsg-1~deb11u6
MEDIUM6.5A flaw was found in Samba.
from 0, < 2:4.17.12+dfsg-0+deb12u1
MEDIUM6.5A heap-based Buffer Overflow flaw was discovered in Samba.
from 0, < 2:4.19.2+dfsg-1
MEDIUM6.5The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient and an atta…
from 0
MEDIUM6.5A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal.
from 0, < 2:4.13.13+dfsg-1~deb11u6
MEDIUM6.5MaxQueryDuration not honoured in Samba AD DC LDAP
from 0
MEDIUM6.5heimdal - security update
from 0, < 2:4.13.13+dfsg-1~deb11u1
MEDIUM6.5A flaw was found in samba's DNS server.
from 0, < 2:4.13.2+dfsg-2
MEDIUM6.5ldb - security update
from 0, < 2:4.12.5+dfsg-1
MEDIUM6.5A use-after-free flaw was found in all samba LDAP server versions before 4.10.17, before 4.11.11, before 4.12.4 used in a AC DC configurati…
from 0, < 2:4.12.5+dfsg-1
MEDIUM6.5There is a use-after-free issue in all samba 4.9.x versions before 4.9.18, all samba 4.10.x versions before 4.10.12 and all samba 4.11.x ve…
from 0, < 2:4.11.5+dfsg-1
MEDIUM6.5All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an issue where if it is set with "log level = 3…
from 0, < 2:4.11.5+dfsg-1
MEDIUM6.5samba - security update
from 0, < 2:4.11.1+dfsg-2
MEDIUM6.5samba - security update
from 0, < 2:4.5.16+dfsg-1+deb9u4
MEDIUM6.5Samba 4.9.x before 4.9.9 and 4.10.x before 4.10.5 has a NULL pointer dereference, leading to Denial of Service.
from 0, < 2:4.9.5+dfsg-5
MEDIUM6.5ldb - security update
from 0, < 2:4.9.5+dfsg-1
MEDIUM6.5Samba from version 4.0.0 and before versions 4.7.12, 4.8.7, 4.9.3 is vulnerable to a denial of service.
from 0, < 2:4.9.2+dfsg-2
MEDIUM6.5Samba from version 4.3.0 and before versions 4.7.12, 4.8.7 and 4.9.3 are vulnerable to a denial of service.
from 0, < 2:4.9.2+dfsg-2
MEDIUM6.5samba - security update
from 0, < 2:4.5.12+dfsg-2+deb9u4