Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2021:4058

Опубликовано: 02 нояб. 2021
Источник: rocky
Оценка: Moderate

Описание

Moderate: samba security update

Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information.

Security Fix(es):

  • samba: Negative idmap cache entries can cause incorrect group entries in the Samba file server process token (CVE-2021-20254)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
samba-client-libsx86_645.el8_4samba-client-libs-4.13.3-5.el8_4.x86_64.rpm
sambax86_645.el8_4samba-4.13.3-5.el8_4.x86_64.rpm
ctdb-testsx86_645.el8_4ctdb-tests-4.13.3-5.el8_4.x86_64.rpm
libwbclienti6865.el8_4libwbclient-4.13.3-5.el8_4.i686.rpm
python3-sambai6865.el8_4python3-samba-4.13.3-5.el8_4.i686.rpm
samba-libsi6865.el8_4samba-libs-4.13.3-5.el8_4.i686.rpm
samba-krb5-printingx86_645.el8_4samba-krb5-printing-4.13.3-5.el8_4.x86_64.rpm
python3-samba-testx86_645.el8_4python3-samba-test-4.13.3-5.el8_4.x86_64.rpm
samba-winbind-modulesx86_645.el8_4samba-winbind-modules-4.13.3-5.el8_4.x86_64.rpm
samba-common-libsx86_645.el8_4samba-common-libs-4.13.3-5.el8_4.x86_64.rpm

Показывать по

Связанные CVE

CVE-2021-20254

Ссылки на источники

Исправления

Связанные уязвимости

ubuntu логотип

CVE-2021-20254

CVSS3: 6.8
ubuntu
больше 4 лет назад

A flaw was found in samba. The Samba smbd file server must map Windows group identities (SIDs) into unix group ids (gids). The code that performs this had a flaw that could allow it to read data beyond the end of the array in the case where a negative cache entry had been added to the mapping cache. This could cause the calling code to return those values into the process token that stores the group membership for a user. The highest threat from this vulnerability is to data confidentiality and integrity.

redhat логотип

CVE-2021-20254

CVSS3: 6.8
redhat
больше 4 лет назад

A flaw was found in samba. The Samba smbd file server must map Windows group identities (SIDs) into unix group ids (gids). The code that performs this had a flaw that could allow it to read data beyond the end of the array in the case where a negative cache entry had been added to the mapping cache. This could cause the calling code to return those values into the process token that stores the group membership for a user. The highest threat from this vulnerability is to data confidentiality and integrity.

nvd логотип

CVE-2021-20254

CVSS3: 6.8
nvd
больше 4 лет назад

A flaw was found in samba. The Samba smbd file server must map Windows group identities (SIDs) into unix group ids (gids). The code that performs this had a flaw that could allow it to read data beyond the end of the array in the case where a negative cache entry had been added to the mapping cache. This could cause the calling code to return those values into the process token that stores the group membership for a user. The highest threat from this vulnerability is to data confidentiality and integrity.

msrc логотип

CVE-2021-20254

CVSS3: 6.8
msrc
около 1 года назад

Описание отсутствует

debian логотип

CVE-2021-20254

CVSS3: 6.8
debian
больше 4 лет назад

A flaw was found in samba. The Samba smbd file server must map Windows ...