CVE-2021-23192

Опубликовано: 09 нояб. 2021

Источник: redhat

CVSS3: 4.8

Описание

A flaw was found in the way samba implemented DCE/RPC. If a client to a Samba server sent a very large DCE/RPC request, and chose to fragment it, an attacker could replace later fragments with their own data, bypassing the signature requirements.

A flaw was found in the way samba implemented DCE/RPC. If a client to a Samba server sent a very large DCE/RPC request, and chose to fragment it, an attacker could replace later fragments with their own data, bypassing the signature requirements.

Меры по смягчению последствий

Setting

dcesrv:max auth states=0

in the smb.conf will provide some mitigation against this issue.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	samba	Not affected
Red Hat Enterprise Linux 7	samba	Not affected
Red Hat Enterprise Linux 9	samba	Not affected
Red Hat Enterprise Linux 8	samba	Fixed	RHSA-2021:5082	13.12.2021
Red Hat Enterprise Linux 8	samba	Fixed	RHSA-2021:5082	13.12.2021
Red Hat Enterprise Linux 8.4 Extended Update Support	samba	Fixed	RHSA-2022:0008	04.01.2022
Red Hat Gluster Storage 3.5 for RHEL 8	samba	Fixed	RHSA-2021:4843	29.11.2021

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=2019666samba: Subsequent DCE/RPC fragment injection vulnerability

4.8 Medium

CVSS3

Связанные уязвимости

CVE-2021-23192

CVSS3: 7.5

ubuntu

больше 3 лет назад

CVE-2021-23192

CVSS3: 7.5

nvd

больше 3 лет назад

CVE-2021-23192

CVSS3: 7.5

msrc

8 месяцев назад

Описание отсутствует

CVE-2021-23192

CVSS3: 7.5

debian

больше 3 лет назад

A flaw was found in the way samba implemented DCE/RPC. If a client to ...

GHSA-vffc-r23p-p6rq

CVSS3: 7.5

github

больше 3 лет назад

4.8 Medium

CVSS3