Uploaded image for project: 'FreeNAS / TrueNAS'
  1. FreeNAS / TrueNAS
  2. NAS-104268

Update to Samba 4.9.17 to address CVE-2019-14861 and CVE-2019-14870

    XMLWordPrintable

    Details

      Description

      ===========================================================
      == Subject:     Samba AD DC zone-named record Denial of 
      ==              Service in DNS management server (dnsserver)
      ==
      == CVE ID#:     CVE-2019-14861
      ==
      == Versions:    All Samba versions since Samba 4.0
      ==
      == Summary:     An authenticated user can crash the DCE/RPC DNS
      ==              management server by creating records with matching
      ==              the zone name
      ===========================================================

       

      ===========================================================
      == Subject:     DelegationNotAllowed not being enforced
      ==              in protocol transition on Samba AD DC.
      ==
      == CVE ID#:     CVE-2019-14870
      ==
      == Versions:    All Samba versions since Samba 4.0
      ==
      == Summary:     The DelegationNotAllowed Kerberos feature restriction
      ==              was not being applied when processing protocol
      ==              transition requests (S4U2Self), in the AD DC KDC.
      ===========================================================

        Attachments

          Attachments

            JEditor

              Activity

                People

                Assignee:
                awalker Andrew Walker
                Reporter:
                awalker Andrew Walker
                Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                  Dates

                  Created:
                  Updated:
                  Resolved: