Description
A flaw was found when using samba as an Active Directory Domain Controller. Due to the way samba handles certain requests as an Active Directory Domain Controller LDAP server, an unauthorized user can cause a stack overflow leading to a denial of service. The highest threat from this vulnerability is to system availability. This issue affects all samba versions before 4.10.15, before 4.11.8 and before 4.12.2.
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Affected products
- Red Hat / sambaAll versions before 4.10.15 – All versions before 4.10.15
- Red Hat / sambaAll versions before 4.11.8 – All versions before 4.11.8
- Red Hat / sambaAll versions before 4.12.2 – All versions before 4.12.2
References
- MAILING_LISThttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y7DVGCHG3XPIBQ5ETGMGW7MXNOO4HFH4/
- MAILING_LISThttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U5KW3ZO35NVDO57JSBZHTQZOS3AIQ5QE/
- MAILING_LISThttp://lists.opensuse.org/opensuse-security-announce/2020-07/msg00054.html
- MISChttps://security.gentoo.org/glsa/202007-15
- MAILING_LISThttp://lists.opensuse.org/opensuse-security-announce/2020-09/msg00002.html
- MAILING_LISThttps://lists.debian.org/debian-lts-announce/2020/11/msg00041.html
- MISChttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10704
- MISChttps://www.samba.org/samba/security/CVE-2020-10704.html