CVE-2018-16853

Source
https://nvd.nist.gov/vuln/detail/CVE-2018-16853
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-16853.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2018-16853
Downstream
Related
Published
2018-11-28T14:29:00Z
Modified
2025-10-15T09:26:05.351364Z
Severity
  • 5.9 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

Samba from version 4.7.0 has a vulnerability that allows a user in a Samba AD domain to crash the KDC when Samba is built in the non-default MIT Kerberos configuration. With this advisory the Samba Team clarify that the MIT Kerberos build of the Samba AD DC is considered experimental. Therefore the Samba Team will not issue security patches for this configuration. Additionally, Samba 4.7.12, 4.8.7 and 4.9.3 have been issued as security releases to prevent building of the AD DC with MIT Kerberos unless --with-experimental-mit-ad-dc is specified to the configure command.

References

Affected packages

Git / github.com/samba-team/samba

Affected ranges

Type
GIT
Repo
https://github.com/samba-team/samba
Events

Affected versions

ldb-1.*

ldb-1.2.3

samba-4.*

samba-4.7.0
samba-4.7.1
samba-4.7.10
samba-4.7.11
samba-4.7.2
samba-4.7.3
samba-4.7.4
samba-4.7.5
samba-4.7.6
samba-4.7.7
samba-4.7.8
samba-4.7.9