FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-16 19:33:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
793a0072-7822-11e9-81e2-005056a311d1	samba -- multiple vulnerabilities The samba project reports: The checksum validation in the S4U2Self handler in the embedded Heimdal KDC did not first confirm that the checksum was keyed, allowing replacement of the requested target (client) principal Authenticated users with write permission can trigger a symlink traversal to write or detect files outside the Samba share. Discovery 2019-05-14 Entry 2019-05-14 samba46 le 4.6.16 samba47 le 4.7.12 samba48 < 4.8.12 samba49 < 4.9.8 samba410 < 4.10.3 https://www.samba.org/samba/security/CVE-2018-16860.html CVE-2018-16860 https://www.samba.org/samba/security/CVE-2019-3880.html CVE-2019-3880
50a1bbc9-fb80-11e9-9e70-005056a311d1	samba -- multiple vulnerabilities The samba project reports: Malicious servers can cause Samba client code to return filenames containing path separators to calling code. When the password contains multi-byte (non-ASCII) characters, the check password script does not receive the full password string. Users with the "get changes" extended access right can crash the AD DC LDAP server by requesting an attribute using the range= syntax. Discovery 2019-09-29 Entry 2019-10-29 samba48 le 4.8.12 samba410 < 4.10.10 samba411 < 4.11.2 https://www.samba.org/samba/security/CVE-2019-10218.html CVE-2019-10218 https://www.samba.org/samba/security/CVE-2019-14833.html CVE-2019-14833 https://www.samba.org/samba/security/CVE-2019-14847.html CVE-2019-14847
1edae47e-1cdd-11ea-8c2a-08002743b791	samba -- multiple vulnerabilities The Samba Team reports: CVE-2019-14861: An authenticated user can crash the DCE/RPC DNS management server by creating records with matching the zone name. CVE-2019-14870: The DelegationNotAllowed Kerberos feature restriction was not being applied when processing protocol transition requests (S4U2Self), in the AD DC KDC. Discovery 2019-12-10 Entry 2019-12-12 samba48 ge 4.8.0 samba410 < 4.10.11 samba411 < 4.11.3 https://www.samba.org/samba/history/samba-4.10.11.html CVE-2019-14861 CVE-2019-14870

VuXML ID

Description

793a0072-7822-11e9-81e2-005056a311d1

samba -- multiple vulnerabilities

The samba project reports:

The checksum validation in the S4U2Self handler in the embedded Heimdal KDC did not first confirm that the checksum was keyed, allowing replacement of the requested target (client) principal

Authenticated users with write permission can trigger a symlink traversal to write or detect files outside the Samba share.

Discovery 2019-05-14
Entry 2019-05-14
samba46

le 4.6.16

samba47

le 4.7.12

samba48

< 4.8.12

samba49

< 4.9.8

samba410

< 4.10.3

https://www.samba.org/samba/security/CVE-2018-16860.html
CVE-2018-16860
https://www.samba.org/samba/security/CVE-2019-3880.html
CVE-2019-3880

50a1bbc9-fb80-11e9-9e70-005056a311d1

samba -- multiple vulnerabilities

The samba project reports:

Malicious servers can cause Samba client code to return filenames containing path separators to calling code.

When the password contains multi-byte (non-ASCII) characters, the check password script does not receive the full password string.

Users with the "get changes" extended access right can crash the AD DC LDAP server by requesting an attribute using the range= syntax.

Discovery 2019-09-29
Entry 2019-10-29
samba48

le 4.8.12

samba410

< 4.10.10

samba411

< 4.11.2

https://www.samba.org/samba/security/CVE-2019-10218.html
CVE-2019-10218
https://www.samba.org/samba/security/CVE-2019-14833.html
CVE-2019-14833
https://www.samba.org/samba/security/CVE-2019-14847.html
CVE-2019-14847

1edae47e-1cdd-11ea-8c2a-08002743b791

samba -- multiple vulnerabilities

The Samba Team reports:

CVE-2019-14861:

An authenticated user can crash the DCE/RPC DNS management server by creating records with matching the zone name.

CVE-2019-14870:

The DelegationNotAllowed Kerberos feature restriction was not being applied when processing protocol transition requests (S4U2Self), in the AD DC KDC.

Discovery 2019-12-10
Entry 2019-12-12
samba48

ge 4.8.0

samba410

< 4.10.11

samba411

< 4.11.3

https://www.samba.org/samba/history/samba-4.10.11.html
CVE-2019-14861
CVE-2019-14870