Search results

.../security/CVE-2021-20277.html CVE-2021-20277]: Out of bounds read in AD DC LDAP server. :An anonymous attacker can crash the Samba AD DC LDAP server by sending easily crafted DNs as part of a bind request. More seriou

Samba with clustering must use the tdbsam or ldap SAM passdb backends (it must not use the default smbpasswd backend), or mus ...ariant, the Samba services are <code>smb</code> and <code>winbind</code>. Starting them at boot time is not recommended and this can be disabled using <code>c

Starting replication Flags: GC DS LDAP KDC TIMESERV GTIMESERV WRITABLE DNS_FOREST CLOSE_SITE

...E-2020-10730]: NULL pointer de-reference and use-after-free in Samba AD DC LDAP Server with ASQ, VLV and paged_results. * [https://www.samba.org/samba/security/CVE-2020-10760.html CVE-2020-10760]: LDAP Use-after-free in Samba AD DC Global Catalog with paged_results and VLV.

...iptor values for "CN=Deleted Objects" allow read of object tombstones over LDAP (Administrator action required!) The change should be confirmed with 'y' for all objects starting with 'CN=Deleted Objects'.

::Samba AD users can crash the server process with an LDAP add or modify request. :: Samba AD users can induce a use-after-free in the server process with an LDAP add or modify request.

:The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only conn ..., 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure via LDAP filters was insufficient and an attacker may be able to obtain confidential

...iptor values for "CN=Deleted Objects" allow read of object tombstones over LDAP (Administrator action required!) The change should be confirmed with 'y' for all objects starting with 'CN=Deleted Objects'.

::Samba AD users can crash the server process with an LDAP add or modify request. :: Samba AD users can induce a use-after-free in the server process with an LDAP add or modify request.

...E-2020-10730]: NULL pointer de-reference and use-after-free in Samba AD DC LDAP Server with ASQ, VLV and paged_results. * [https://www.samba.org/samba/security/CVE-2020-10760.html CVE-2020-10760]: LDAP Use-after-free in Samba AD DC Global Catalog with paged_results and VLV.

There will be security releases only starting from now. : In setups which provide ldap(s) and/or https services, the private key for SSL/TLS encryption might be w

...one way AD clients look-up user information or to perform administration. LDAP is the primary administrative interface to Active Directory and is generall ....e. on Samba 3 releases), the solution was to back Samba on to an external LDAP server such as OpenLDAP. This solution was very popular for being able to e

...me=CVE-2018-16851 CVE-2018-16851] NULL pointer de-reference in Samba AD DC LDAP server ...ite query recursion caused by CNAME loops. Any dns record can be added via ldap by an unprivileged user using the ldbadd tool, so this is a security issue.

...-2018-10919 CVE-2018-10919] (Confidential attribute disclosure from the AD LDAP server.) ...checks allow discovery of confidential attribute values via authenticated LDAP search expressions.

* Winbind can't fetch user or group info from AD via LDAP [https://bugzilla.samba.org/show_bug.cgi?id=9147 bug #9147]. in the [global] section of your smb.conf and re-starting Samba. All features should work over SMB2 except the modification of user q

...ttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2112 CVE-2016-2112] (LDAP client and server don't enforce integrity) ...nce of required flags, which were requested by the application layer, e.g. LDAP or SMB1 encryption (via the unix extensions). As a result a man in the midd