USN-4217-1

See a problem?

Source

https://ubuntu.com/security/notices/USN-4217-1

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4217-1.json

JSON Data

https://api.osv.dev/v1/vulns/USN-4217-1

Related

Published

2019-12-10T12:54:20.861243Z

Modified

2019-12-10T12:54:20.861243Z

Summary

samba vulnerabilities

Details

Andreas Oster discovered that the Samba DNS management server incorrectly handled certain records. An authenticated attacker could possibly use this issue to crash Samba, resulting in a denial of service. (CVE-2019-14861)

Isaac Boukris discovered that Samba did not enforce the Kerberos DelegationNotAllowed feature restriction, contrary to expectations. (CVE-2019-14870)

References

Affected packages

Ubuntu:16.04:LTS / samba

Package

Name: samba
Purl: pkg:deb/ubuntu/samba@2:4.3.11+dfsg-0ubuntu0.16.04.24?arch=src?distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:4.3.11+dfsg-0ubuntu0.16.04.24

Affected versions

2:4.*

2:4.1.17+dfsg-4ubuntu2

2:4.1.20+dfsg-1ubuntu1

2:4.1.20+dfsg-1ubuntu2

2:4.1.20+dfsg-1ubuntu3

2:4.1.20+dfsg-1ubuntu5

2:4.3.3+dfsg-1ubuntu1

2:4.3.3+dfsg-1ubuntu2

2:4.3.3+dfsg-1ubuntu3

2:4.3.6+dfsg-1ubuntu1

2:4.3.8+dfsg-0ubuntu1

2:4.3.9+dfsg-0ubuntu0.16.04.1

2:4.3.9+dfsg-0ubuntu0.16.04.2

2:4.3.9+dfsg-0ubuntu0.16.04.3

2:4.3.11+dfsg-0ubuntu0.16.04.1

2:4.3.11+dfsg-0ubuntu0.16.04.3

2:4.3.11+dfsg-0ubuntu0.16.04.5

2:4.3.11+dfsg-0ubuntu0.16.04.6

2:4.3.11+dfsg-0ubuntu0.16.04.7

2:4.3.11+dfsg-0ubuntu0.16.04.8

2:4.3.11+dfsg-0ubuntu0.16.04.9

2:4.3.11+dfsg-0ubuntu0.16.04.10

2:4.3.11+dfsg-0ubuntu0.16.04.11

2:4.3.11+dfsg-0ubuntu0.16.04.12

2:4.3.11+dfsg-0ubuntu0.16.04.13

2:4.3.11+dfsg-0ubuntu0.16.04.15

2:4.3.11+dfsg-0ubuntu0.16.04.16

2:4.3.11+dfsg-0ubuntu0.16.04.17

2:4.3.11+dfsg-0ubuntu0.16.04.18

2:4.3.11+dfsg-0ubuntu0.16.04.19

2:4.3.11+dfsg-0ubuntu0.16.04.20

2:4.3.11+dfsg-0ubuntu0.16.04.21

2:4.3.11+dfsg-0ubuntu0.16.04.23

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "libwbclient-dev": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-libs": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "registry-tools": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-common-bin": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "libwbclient0-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-dsdb-modules-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "libpam-winbind-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "libnss-winbind-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "winbind": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-vfs-modules": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-common-bin-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-testsuite": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-dev-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "smbclient-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "libsmbclient": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "libsmbclient-dev": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "libwbclient0": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "libparse-pidl-perl-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-dsdb-modules": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "registry-tools-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-vfs-modules-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "python-samba": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "ctdb": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "libsmbclient-dev-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "libnss-winbind": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "libsmbclient-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-libs-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-dbg": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-testsuite-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-common": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "winbind-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "libpam-winbind": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "smbclient": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "libwbclient-dev-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "samba-dev": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "libparse-pidl-perl": "2:4.3.11+dfsg-0ubuntu0.16.04.24",
            "ctdb-dbgsym": "2:4.3.11+dfsg-0ubuntu0.16.04.24"
        }
    ]
}

Ubuntu:18.04:LTS / samba

Package

Name: samba
Purl: pkg:deb/ubuntu/samba@2:4.7.6+dfsg~ubuntu-0ubuntu2.14?arch=src?distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:4.7.6+dfsg~ubuntu-0ubuntu2.14

Affected versions

2:4.*

2:4.6.7+dfsg-1ubuntu3

2:4.7.1+dfsg-1ubuntu1

2:4.7.3+dfsg-1ubuntu1

2:4.7.4+dfsg-1ubuntu1

2:4.7.6+dfsg~ubuntu-0ubuntu1

2:4.7.6+dfsg~ubuntu-0ubuntu2

2:4.7.6+dfsg~ubuntu-0ubuntu2.2

2:4.7.6+dfsg~ubuntu-0ubuntu2.4

2:4.7.6+dfsg~ubuntu-0ubuntu2.5

2:4.7.6+dfsg~ubuntu-0ubuntu2.6

2:4.7.6+dfsg~ubuntu-0ubuntu2.7

2:4.7.6+dfsg~ubuntu-0ubuntu2.9

2:4.7.6+dfsg~ubuntu-0ubuntu2.10

2:4.7.6+dfsg~ubuntu-0ubuntu2.11

2:4.7.6+dfsg~ubuntu-0ubuntu2.13

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "libwbclient-dev": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "samba-libs": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "registry-tools": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "samba-common-bin": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "libwbclient0-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "samba-dsdb-modules-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "libpam-winbind-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "libnss-winbind-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "samba-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "winbind": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "samba-vfs-modules": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "python-samba-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "samba-common-bin-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "samba-testsuite": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "smbclient-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "libsmbclient": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "samba": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "libwbclient0": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "libsmbclient-dev": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "python-samba": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "samba-dsdb-modules": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "registry-tools-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "samba-vfs-modules-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "ctdb": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "libnss-winbind": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "libsmbclient-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "samba-libs-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "winbind-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "samba-testsuite-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "samba-common": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "libpam-winbind": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "smbclient": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "samba-dev": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "libparse-pidl-perl": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14",
            "ctdb-dbgsym": "2:4.7.6+dfsg~ubuntu-0ubuntu2.14"
        }
    ]
}