Búsqueda de    
Vulnerabilidad   
    Buscar 211766 Descripciones CVE y
97459 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.1.4.2020.1913.1
Categoría:SuSE Local Security Checks
Título:SUSE: Security Advisory (SUSE-SU-2020:1913-1)
Resumen:The remote host is missing an update for the 'samba' package(s) announced via the SUSE-SU-2020:1913-1 advisory.
Descripción:Summary:
The remote host is missing an update for the 'samba' package(s) announced via the SUSE-SU-2020:1913-1 advisory.

Vulnerability Insight:
This update for samba fixes the following issues:

CVE-2020-10745: Fixed an issue which parsing and packing of NBT and DNS
packets containing dots could potentially have consumed excessive CPU
(bsc#1173160).

CVE-2020-14303: Fixed an endless loop when receiving at AD DC empty UDP
packets (bsc#1173359).

CVE-2020-10730: Fixed a null de-reference in AD DC LDAP server when ASQ
and VLV combined (bsc#1173159).

CVE-2020-10760: Fixed a use-after-free in AD DC Global Catalog LDAP
server with paged_result or VLV (bsc#1173161).

Added libnetapi-devel to baselibs conf, for wine usage (bsc#1172307).

Fixed an installing issue where samba - samba-ad-dc.service did not
exist and unit was not found (bsc#1171437).

Affected Software/OS:
'samba' package(s) on SUSE Linux Enterprise Module for Python2 15-SP1, SUSE Linux Enterprise Module for Basesystem 15-SP1, SUSE Linux Enterprise High Availability 15-SP1, SUSE Enterprise Storage 6

Solution:
Please install the updated package(s).

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2020-10730
Common Vulnerability Exposure (CVE) ID: CVE-2020-10745
Common Vulnerability Exposure (CVE) ID: CVE-2020-10760
Common Vulnerability Exposure (CVE) ID: CVE-2020-14303
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

Esta es sólo una de 97459 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.




© 1998-2021 E-Soft Inc. Todos los derechos reservados.