CVE-2020-10760 — Use After Free in Samba

CWE-416 — Use After Free10 documents8 sources

Severity

6.5MEDIUMNVD

EPSS

2.4%

top 15.07%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Samba Canonical Ubuntu Linux Fedoraproject Fedora +1 more

Timeline

PublishedJul 6

Latest updateMay 24

Description

A use-after-free flaw was found in all samba LDAP server versions before 4.10.17, before 4.11.11, before 4.12.4 used in a AC DC configuration. A Samba LDAP user could use this flaw to crash samba.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages5 packages

▶NVDsamba/samba4.5.0 — 4.10.17+2

▶Debiansamba/samba< 2:4.12.5+dfsg-1+3

▶Ubuntusamba/samba< 2:4.3.11+dfsg-0ubuntu0.16.04.28+3

▶CVEListV5samba/sambaAll Samba versions before 4.10.17, 4.11.11, 4.12.4

▶NVDopensuse/leap15.1, 15.2+1

Also affects: Fedora 31, Ubuntu Linux 18.04, 19.10, 20.04

🔴Vulnerability Details

GHSA

GHSA-wf3q-4cm3-gfjr: A use-after-free flaw was found in all samba LDAP server versions before 4↗2022-05-24

▶

CVEList

CVE-2020-10760: A use-after-free flaw was found in all samba LDAP server versions before 4↗2020-07-06

▶

OSV

CVE-2020-10760: A use-after-free flaw was found in all samba LDAP server versions before 4↗2020-07-06

▶

OSV

samba vulnerabilities↗2020-07-02

▶

📋Vendor Advisories

Red Hat

samba: LDAP Use-after-free in Samba AD DC Global Catalog with paged_results and VLV↗2020-07-02

▶

Ubuntu

Samba vulnerabilities↗2020-07-02

▶

Debian

CVE-2020-10760: samba - A use-after-free flaw was found in all samba LDAP server versions before 4.10.17...↗2020

▶

💬Community

Bugzilla

CVE-2020-10760 samba: LDAP Use-after-free in Samba AD DC Global Catalog with paged_results and VLV [fedora-all]↗2020-07-02

▶

Bugzilla

CVE-2020-10760 samba: LDAP Use-after-free in Samba AD DC Global Catalog with paged_results and VLV↗2020-06-22

▶