CVE-2021-3671: Null Pointer Dereference
First published: Tue Oct 12 2021(Updated: )
A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authenticated user could use this flaw to crash the samba server.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/heimdal | <=7.7.0+dfsg-2<=7.5.0+dfsg-3 | 7.7.0+dfsg-3 7.7.0+dfsg-2+deb11u1 |
| Samba Samba | <4.13.12 | |
| Samba Samba | >=4.14.0<4.14.8 | |
| Debian Debian Linux | =10.0 | |
| Debian Debian Linux | =11.0 | |
| Netapp Management Services For Element Software | ||
| Netapp Management Services For Netapp Hci | ||
| NetApp ONTAP Select Deploy administration utility | ||
| redhat/samba | <4.13.12 | 4.13.12 |
| redhat/samba | <4.14.8 | 4.14.8 |
| debian/heimdal | 7.7.0+dfsg-2+deb11u3 7.8.git20221117.28daf24+dfsg-2 7.8.git20221117.28daf24+dfsg-8 | |
| debian/samba | 2:4.13.13+dfsg-1~deb11u6 2:4.17.12+dfsg-0+deb12u1 2:4.21.1+dfsg-2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://security-tracker.debian.org/tracker/CVE-2021-3671
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3671
- https://github.com/heimdal/heimdal/commit/04171147948d0a3636bc6374181926f0fb2ec83a
- https://github.com/heimdal/heimdal/commit/773802aecfb4b6a73817fa522faeb55b2a7cdb2a
- https://github.com/heimdal/heimdal/issues/849
- https://security-tracker.debian.org/tracker/CVE-2021-44758
- https://security-tracker.debian.org/tracker/CVE-2022-44640
- https://security-tracker.debian.org/tracker/CVE-2022-3437
- https://security-tracker.debian.org/tracker/CVE-2022-42898
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=996586
- https://bugzilla.redhat.com/show_bug.cgi?id=2013080,
- https://bugzilla.samba.org/show_bug.cgi?id=14770,
- https://lists.debian.org/debian-lts-announce/2022/11/msg00034.html
- https://security.netapp.com/advisory/ntap-20221215-0002/
- https://security.netapp.com/advisory/ntap-20230216-0008/
- https://www.debian.org/security/2022/dsa-5287
- https://launchpad.net/bugs/cve/CVE-2021-3671
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2013081
- https://bugzilla.redhat.com/show_bug.cgi?id=2013080
- https://bugzilla.redhat.com/show_bug.cgi?id=2013080%2C
- https://bugzilla.samba.org/show_bug.cgi?id=14770%2C
- https://bugzilla.samba.org/show_bug.cgi?id=14770
- https://github.com/heimdal/heimdal/security/advisories/GHSA-h9qj-cpmq-3562
- https://gitlab.com/samba-team/samba/-/commit/0cb4b939f192376bf5e33637863a91a20f74c5a5
- https://nvd.nist.gov/vuln/detail/CVE-2021-3671
- https://ubuntu.com/security/CVE-2021-3671
Frequently Asked Questions
What is the vulnerability ID?
CVE-2021-3671
What is the severity of CVE-2021-3671?
The severity of CVE-2021-3671 is medium.
What is the description of CVE-2021-3671?
CVE-2021-3671 is a vulnerability in the samba kerberos server where a null pointer de-reference can allow an authenticated user to crash the server.
Which software is affected by CVE-2021-3671?
The affected software includes Ubuntu's heimdal package versions 1.6~ (trusty), 7.7.0+dfsg-3 (heimdal/upstream), 7.5.0+dfsg-1ubuntu0.1 (bionic), 7.7.0+dfsg-1ubuntu1.1 (focal), 1.7~ (xenial); Ubuntu's samba package versions 2:4.13.14+dfsg-0ubuntu0.21.10.1 (impish), 4.13.13 (upstream), 2:4.13.14+dfsg-0ubuntu0.20.04.1 (focal), 2:4.13.14+dfsg-0ubuntu0.21.04.1 (hirsute), 2:4.7.6+dfsg~ubuntu-0ubuntu2.26 (bionic), 2:4.13.14+dfsg-0ubuntu1 (jammy), 2:4.13.14+dfsg-0ubuntu1 (kinetic), 2:4.13.14+dfsg-0ubuntu1 (lunar); Red Hat's samba package versions 4.13.12, 4.14.8; Debian's heimdal package versions 7.5.0+dfsg-3+deb10u2, 7.7.0+dfsg-2+deb11u3, 7.8.git20221117.28daf24+dfsg-2, 7.8.git20221117.28daf24+dfsg-3; Debian's samba package versions 2:4.13.13+dfsg-1~deb11u5, 2:4.17.9+dfsg-0+deb12u3, 2:4.17.10+dfsg-0+deb12u1, 2:4.19.0+dfsg-1.
Are there any references for CVE-2021-3671?
Yes, there are references available for CVE-2021-3671. They can be found at the following URLs: https://bugzilla.redhat.com/show_bug.cgi?id=2013080, https://bugzilla.samba.org/show_bug.cgi?id=14770, https://github.com/heimdal/heimdal/commit/04171147948d0a3636bc6374181926f0fb2ec83a
- collector/debian-bugs
- alias/CVE-2021-3671
- collector/nvd-index
- agent/author
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- agent/software-canonical-lookup
- agent/severity
- agent/weakness
- collector/nvd-cve
- source/NVD
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/remedy
- agent/tags
- agent/description
- agent/event
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- agent/trending
- package-manager/debian
- vendor/samba
- canonical/samba samba
- version/samba samba/4.14.0
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/10.0
- version/debian debian linux/11.0
- vendor/netapp
- canonical/netapp management services for element software
- canonical/netapp management services for netapp hci
- canonical/netapp ontap select deploy administration utility
- package-manager/redhat