Mageia: 2023-0247 Moderate: Samba Issues Including Out-Of-Bounds Read
mageia
August 23, 2023
Out-of-bounds read due to insufficient length checks in winbindd_pam_auth_crap.c (CVE-2022-2127) Improper SMB2 packet signing mechanism leading to man in the middle risk (CVE-2023-...
Summary
Out-of-bounds read due to insufficient length checks in
winbindd_pam_auth_crap.c (CVE-2022-2127)
Improper SMB2 packet signing mechanism leading to man in the middle risk
(CVE-2023-3347)
Infinite loop vulnerability was found in Samba's mdssvc RPC service for
Spotlight (CVE-2023-34966)
Type Confusion vulnerability was found in Samba's mdssvc RPC service for
Spotlight (CVE-2023-34967)
Path disclosure vulnerability in the Spotlight protocol (CVE-2023-34968)
References
- https://bugs.mageia.org/show_bug.cgi?id=32152
-
-
-
-
-
-
-
- https://www.cve.org/CVERecord?id=CVE-2022-2127
- https://www.cve.org/CVERecord?id=CVE-2023-3347
- https://www.cve.org/CVERecord?id=CVE-2023-34966
- https://www.cve.org/CVERecord?id=CVE-2023-34967
- https://www.cve.org/CVERecord?id=CVE-2023-34968
Resolution
SRPMS
- 8/core/samba-4.16.11-1.mga8
PREVIOUS
NEXT
Publication date: 23 Aug 2023
URL: https://advisories.mageia.org/MGASA-2023-0247.html
Type: security
CVE: CVE-2022-2127,
CVE-2023-3347,
CVE-2023-34966,
CVE-2023-34967,
CVE-2023-34968
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!