A flaw was found in the way an LDAP search expression could crash the shared LDAP server process of a samba AD DC in samba before version 4.10. An authenticated user, having read permissions on the LDAP server, could use this flaw to cause denial of service.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "ldb-tools": "1:1.1.24-0ubuntu0.14.04.2", "python-ldb-dbgsym": "1:1.1.24-0ubuntu0.14.04.2", "libldb-dev": "1:1.1.24-0ubuntu0.14.04.2", "python-ldb": "1:1.1.24-0ubuntu0.14.04.2", "libldb1-dbg": "1:1.1.24-0ubuntu0.14.04.2", "ldb-tools-dbgsym": "1:1.1.24-0ubuntu0.14.04.2", "python-ldb-dev": "1:1.1.24-0ubuntu0.14.04.2", "libldb1-dbgsym": "1:1.1.24-0ubuntu0.14.04.2", "python-ldb-dbg": "1:1.1.24-0ubuntu0.14.04.2", "libldb1": "1:1.1.24-0ubuntu0.14.04.2" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "ldb-tools": "2:1.1.24-1ubuntu3.1", "libldb-dev": "2:1.1.24-1ubuntu3.1", "ldb-tools-dbgsym": "2:1.1.24-1ubuntu3.1", "libldb1-dbg": "2:1.1.24-1ubuntu3.1", "python3-ldb": "2:1.1.24-1ubuntu3.1", "python-ldb": "2:1.1.24-1ubuntu3.1", "python-ldb-dev": "2:1.1.24-1ubuntu3.1", "libldb1-dbgsym": "2:1.1.24-1ubuntu3.1", "python3-ldb-dbg": "2:1.1.24-1ubuntu3.1", "python-ldb-dbg": "2:1.1.24-1ubuntu3.1", "libldb1": "2:1.1.24-1ubuntu3.1", "python3-ldb-dev": "2:1.1.24-1ubuntu3.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "ldb-tools": "2:1.2.3-1ubuntu0.1", "python-ldb-dbgsym": "2:1.2.3-1ubuntu0.1", "libldb-dev": "2:1.2.3-1ubuntu0.1", "python-ldb": "2:1.2.3-1ubuntu0.1", "ldb-tools-dbgsym": "2:1.2.3-1ubuntu0.1", "python-ldb-dev": "2:1.2.3-1ubuntu0.1", "libldb1-dbgsym": "2:1.2.3-1ubuntu0.1", "libldb1": "2:1.2.3-1ubuntu0.1" } ] }