- Vulnerability/
- USN-4244-1
USN-4244-1: Samba vulnerabilities
First published: Tue Jan 21 2020(Updated: )
It was discovered that Samba did not automatically replicate ACLs set to inherit down a subtree on AD Directory, contrary to expectations. This issue was only addressed in Ubuntu 18.04 LTS, Ubuntu 19.04 and Ubuntu 19.10. (CVE-2019-14902) Robert Święcki discovered that Samba incorrectly handled certain character conversions when the log level is set to 3 or above. In certain environments, a remote attacker could possibly use this issue to cause Samba to crash, resulting in a denial of service. (CVE-2019-14907) Christian Naumer discovered that Samba incorrectly handled DNS zone scavenging. This issue could possibly result in some incorrect data being written to the DB. This issue only applied to Ubuntu 19.04 and Ubuntu 19.10. (CVE-2019-19344)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/samba | <2:4.10.7+dfsg-0ubuntu2.4 | 2:4.10.7+dfsg-0ubuntu2.4 |
| =19.10 | ||
| All of | ||
| ubuntu/samba | <2:4.10.0+dfsg-0ubuntu2.8 | 2:4.10.0+dfsg-0ubuntu2.8 |
| =19.04 | ||
| All of | ||
| ubuntu/samba | <2:4.7.6+dfsg~ubuntu-0ubuntu2.15 | 2:4.7.6+dfsg~ubuntu-0ubuntu2.15 |
| =18.04 | ||
| All of | ||
| ubuntu/samba | <2:4.3.11+dfsg-0ubuntu0.16.04.25 | 2:4.3.11+dfsg-0ubuntu0.16.04.25 |
| =16.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2019-14902
- https://ubuntu.com/security/CVE-2019-14907
- https://ubuntu.com/security/CVE-2019-19344
- https://launchpad.net/ubuntu/+source/samba/2:4.10.7+dfsg-0ubuntu2.4
- https://launchpad.net/ubuntu/+source/samba/2:4.10.0+dfsg-0ubuntu2.8
- https://launchpad.net/ubuntu/+source/samba/2:4.7.6+dfsg~ubuntu-0ubuntu2.15
- https://launchpad.net/ubuntu/+source/samba/2:4.3.11+dfsg-0ubuntu0.16.04.25
- https://ubuntu.com/security/notices/USN-4244-1 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
Frequently Asked Questions
What is the severity of CVE-2019-14902?
The severity of CVE-2019-14902 is moderate.
What is the severity of CVE-2019-14907?
The severity of CVE-2019-14907 is low.
What is the severity of CVE-2019-19344?
The severity of CVE-2019-19344 is high.
How can I fix the Samba vulnerability in Ubuntu 19.10?
To fix the Samba vulnerability in Ubuntu 19.10, update the samba package to version 2:4.10.7+dfsg-0ubuntu2.4.
How can I fix the Samba vulnerability in Ubuntu 19.04?
To fix the Samba vulnerability in Ubuntu 19.04, update the samba package to version 2:4.10.0+dfsg-0ubuntu2.8.
How can I fix the Samba vulnerability in Ubuntu 18.04?
To fix the Samba vulnerability in Ubuntu 18.04, update the samba package to version 2:4.7.6+dfsg~ubuntu-0ubuntu2.15.
How can I fix the Samba vulnerability in Ubuntu 16.04?
To fix the Samba vulnerability in Ubuntu 16.04, update the samba package to version 2:4.3.11+dfsg-0ubuntu0.16.04.25.
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- collector/usn
- source/Ubuntu
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/19.10
- version/ubuntu ubuntu/19.04
- version/ubuntu ubuntu/18.04
- version/ubuntu ubuntu/16.04