vulnerability

Amazon Linux AMI: CVE-2018-1050: Security patch for samba (ALAS-2018-1126)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
3	(AV:A/AC:L/Au:N/C:N/I:N/A:P)	Mar 13, 2018	Jan 25, 2019	Oct 14, 2022

Severity

CVSS

(AV:A/AC:L/Au:N/C:N/I:N/A:P)

Published

Mar 13, 2018

Added

Jan 25, 2019

Modified

Oct 14, 2022

Description

All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler service to crash.

Solution

amazon-linux-upgrade-samba

References

AMAZON-ALAS-2018-1126
DEBIAN-DSA-4135
UBUNTU-USN-3595-1
UBUNTU-USN-3595-2
NVD-CVE-2018-1050

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report