USN-5542-1

See a problem?
Please try reporting it to the source first.
Source
https://ubuntu.com/security/notices/USN-5542-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5542-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/USN-5542-1
Upstream
Related
Published
2022-08-01T11:50:53.231239Z
Modified
2025-10-13T04:36:01Z
Summary
samba vulnerabilities
Details

It was discovered that Samba did not handle MaxQueryDuration when being used in AD DC configurations, contrary to expectations. This issue only affected Ubuntu 20.04 LTS. (CVE-2021-3670)

Luke Howard discovered that Samba incorrectly handled certain restrictions associated with changing passwords. A remote attacker being requested to change passwords could possibly use this issue to escalate privileges. (CVE-2022-2031)

Luca Moro discovered that Samba incorrectly handled certain SMB1 communications. A remote attacker could possibly use this issue to obtain sensitive memory contents. (CVE-2022-32742)

Joseph Sutton discovered that Samba incorrectly handled certain password change requests. A remote attacker could use this issue to change passwords of other users, resulting in privilege escalation. (CVE-2022-32744)

Joseph Sutton discovered that Samba incorrectly handled certain LDAP add or modify requests. A remote attacker could possibly use this issue to cause Samba to crash, resulting in a denial of service. (CVE-2022-32745)

Joseph Sutton and Andrew Bartlett discovered that Samba incorrectly handled certain LDAP add or modify requests. A remote attacker could possibly use this issue to cause Samba to crash, resulting in a denial of service. (CVE-2022-32746)

References

Affected packages

Ubuntu:20.04:LTS / samba

Package

Name
samba
Purl
pkg:deb/ubuntu/samba@2:4.13.17~dfsg-0ubuntu1.20.04.1?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:4.13.17~dfsg-0ubuntu1.20.04.1

Affected versions

2:4.*

2:4.10.7+dfsg-0ubuntu2
2:4.10.7+dfsg-0ubuntu3
2:4.11.1+dfsg-3ubuntu1
2:4.11.1+dfsg-3ubuntu2
2:4.11.1+dfsg-3ubuntu4
2:4.11.5+dfsg-1ubuntu1
2:4.11.5+dfsg-1ubuntu2
2:4.11.6+dfsg-0ubuntu1
2:4.11.6+dfsg-0ubuntu1.1
2:4.11.6+dfsg-0ubuntu1.2
2:4.11.6+dfsg-0ubuntu1.3
2:4.11.6+dfsg-0ubuntu1.4
2:4.11.6+dfsg-0ubuntu1.5
2:4.11.6+dfsg-0ubuntu1.6
2:4.11.6+dfsg-0ubuntu1.8
2:4.11.6+dfsg-0ubuntu1.9
2:4.11.6+dfsg-0ubuntu1.10
2:4.13.14+dfsg-0ubuntu0.20.04.1
2:4.13.14+dfsg-0ubuntu0.20.04.2
2:4.13.14+dfsg-0ubuntu0.20.04.3
2:4.13.14+dfsg-0ubuntu0.20.04.4
2:4.13.17~dfsg-0ubuntu0.21.04.1
2:4.13.17~dfsg-0ubuntu0.21.04.2

Ecosystem specific 

{
    "binaries": [
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "ctdb"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "libnss-winbind"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "libpam-winbind"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "libsmbclient"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "libsmbclient-dev"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "libwbclient-dev"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "libwbclient0"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "python3-samba"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "registry-tools"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "samba"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "samba-common"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "samba-common-bin"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "samba-dev"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "samba-dsdb-modules"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "samba-libs"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "samba-testsuite"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "samba-vfs-modules"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "smbclient"
        },
        {
            "binary_version": "2:4.13.17~dfsg-0ubuntu1.20.04.1",
            "binary_name": "winbind"
        }
    ],
    "availability": "No subscription required"
}

Database specific

cves_map

{
    "cves": [
        {
            "id": "CVE-2021-3670",
            "severity": [
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
                },
                {
                    "type": "Ubuntu",
                    "score": "low"
                }
            ]
        },
        {
            "id": "CVE-2022-2031",
            "severity": [
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
                },
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        },
        {
            "id": "CVE-2022-32742",
            "severity": [
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"
                },
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"
                },
                {
                    "type": "Ubuntu",
                    "score": "low"
                }
            ]
        },
        {
            "id": "CVE-2022-32744",
            "severity": [
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
                },
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        },
        {
            "id": "CVE-2022-32745",
            "severity": [
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H"
                },
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        },
        {
            "id": "CVE-2022-32746",
            "severity": [
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"
                },
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        }
    ],
    "ecosystem": "Ubuntu:20.04:LTS"
}

Ubuntu:22.04:LTS / samba

Package

Name
samba
Purl
pkg:deb/ubuntu/samba@2:4.15.9+dfsg-0ubuntu0.2?arch=source&distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:4.15.9+dfsg-0ubuntu0.2

Affected versions

2:4.*

2:4.13.5+dfsg-2ubuntu2
2:4.13.5+dfsg-2ubuntu3
2:4.13.14+dfsg-0ubuntu1
2:4.13.14+dfsg-0ubuntu2
2:4.15.5~dfsg-0ubuntu1
2:4.15.5~dfsg-0ubuntu2
2:4.15.5~dfsg-0ubuntu4
2:4.15.5~dfsg-0ubuntu5
2:4.15.5~dfsg-0ubuntu5.1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "ctdb"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "libnss-winbind"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "libpam-winbind"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "libsmbclient"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "libsmbclient-dev"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "libwbclient-dev"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "libwbclient0"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "python3-samba"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "registry-tools"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "samba"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "samba-common"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "samba-common-bin"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "samba-dev"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "samba-dsdb-modules"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "samba-libs"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "samba-testsuite"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "samba-vfs-modules"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "smbclient"
        },
        {
            "binary_version": "2:4.15.9+dfsg-0ubuntu0.2",
            "binary_name": "winbind"
        }
    ],
    "availability": "No subscription required"
}

Database specific

cves_map

{
    "cves": [
        {
            "id": "CVE-2022-2031",
            "severity": [
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
                },
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        },
        {
            "id": "CVE-2022-32742",
            "severity": [
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"
                },
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"
                },
                {
                    "type": "Ubuntu",
                    "score": "low"
                }
            ]
        },
        {
            "id": "CVE-2022-32744",
            "severity": [
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
                },
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        },
        {
            "id": "CVE-2022-32745",
            "severity": [
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H"
                },
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        },
        {
            "id": "CVE-2022-32746",
            "severity": [
                {
                    "type": "CVSS_V3",
                    "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"
                },
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        }
    ],
    "ecosystem": "Ubuntu:22.04:LTS"
}