FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 21:00:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
5f0dd349-40a2-11ea-8d8c-005056a311d1	samba -- multiple vulnerabilities The Samba Team reports: CVE-2019-14902 The implementation of ACL inheritance in the Samba AD DC was not complete, and so absent a 'full-sync' replication, ACLs could get out of sync between domain controllers. CVE-2019-14907 When processing untrusted string input Samba can read past the end of the allocated buffer when printing a "Conversion error" message to the logs. CVE-2019-19344 During DNS zone scavenging (of expired dynamic entries) there is a read of memory after it has been freed. Discovery 2020-01-14 Entry 2020-01-27 samba410 < 4.10.12 samba411 < 4.11.4 https://www.samba.org/samba/history/samba-4.10.12.html CVE-2019-14902 CVE-2019-14907 CVE-2019-19344

VuXML ID

Description

5f0dd349-40a2-11ea-8d8c-005056a311d1

samba -- multiple vulnerabilities

The Samba Team reports:

CVE-2019-14902

The implementation of ACL inheritance in the Samba AD DC was not complete, and so absent a 'full-sync' replication, ACLs could get out of sync between domain controllers.

CVE-2019-14907

When processing untrusted string input Samba can read past the end of the allocated buffer when printing a "Conversion error" message to the logs.

CVE-2019-19344

During DNS zone scavenging (of expired dynamic entries) there is a read of memory after it has been freed.

Discovery 2020-01-14
Entry 2020-01-27
samba410

< 4.10.12

samba411

< 4.11.4

https://www.samba.org/samba/history/samba-4.10.12.html
CVE-2019-14902
CVE-2019-14907
CVE-2019-19344