vulnerability
Amazon Linux 2023: CVE-2022-45141: Important priority package update for samba
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:M/Au:N/C:C/I:C/A:C) | Dec 16, 2022 | Feb 17, 2025 | Jul 4, 2025 |
Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
Dec 16, 2022
Added
Feb 17, 2025
Modified
Jul 4, 2025
Description
Since the Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability was disclosed by Microsoft on Nov 8 2022 and per RFC8429 it is assumed that rc4-hmac is weak, Vulnerable Samba Active Directory DCs will issue rc4-hmac encrypted tickets despite the target server supporting better encryption (eg aes256-cts-hmac-sha1-96).
Solutions
amazon-linux-2023-upgrade-libnetapiamazon-linux-2023-upgrade-libnetapi-debuginfoamazon-linux-2023-upgrade-libnetapi-develamazon-linux-2023-upgrade-libsmbclientamazon-linux-2023-upgrade-libsmbclient-debuginfoamazon-linux-2023-upgrade-libsmbclient-develamazon-linux-2023-upgrade-libwbclientamazon-linux-2023-upgrade-libwbclient-debuginfoamazon-linux-2023-upgrade-libwbclient-develamazon-linux-2023-upgrade-python3-sambaamazon-linux-2023-upgrade-python3-samba-debuginfoamazon-linux-2023-upgrade-python3-samba-develamazon-linux-2023-upgrade-python3-samba-testamazon-linux-2023-upgrade-sambaamazon-linux-2023-upgrade-samba-clientamazon-linux-2023-upgrade-samba-client-debuginfoamazon-linux-2023-upgrade-samba-client-libsamazon-linux-2023-upgrade-samba-client-libs-debuginfoamazon-linux-2023-upgrade-samba-commonamazon-linux-2023-upgrade-samba-common-libsamazon-linux-2023-upgrade-samba-common-libs-debuginfoamazon-linux-2023-upgrade-samba-common-toolsamazon-linux-2023-upgrade-samba-common-tools-debuginfoamazon-linux-2023-upgrade-samba-dcerpcamazon-linux-2023-upgrade-samba-dcerpc-debuginfoamazon-linux-2023-upgrade-samba-dc-libsamazon-linux-2023-upgrade-samba-dc-libs-debuginfoamazon-linux-2023-upgrade-samba-debuginfoamazon-linux-2023-upgrade-samba-debugsourceamazon-linux-2023-upgrade-samba-develamazon-linux-2023-upgrade-samba-krb5-printingamazon-linux-2023-upgrade-samba-krb5-printing-debuginfoamazon-linux-2023-upgrade-samba-ldb-ldap-modulesamazon-linux-2023-upgrade-samba-ldb-ldap-modules-debuginfoamazon-linux-2023-upgrade-samba-libsamazon-linux-2023-upgrade-samba-libs-debuginfoamazon-linux-2023-upgrade-samba-pidlamazon-linux-2023-upgrade-samba-testamazon-linux-2023-upgrade-samba-test-debuginfoamazon-linux-2023-upgrade-samba-test-libsamazon-linux-2023-upgrade-samba-test-libs-debuginfoamazon-linux-2023-upgrade-samba-usersharesamazon-linux-2023-upgrade-samba-vfs-iouringamazon-linux-2023-upgrade-samba-vfs-iouring-debuginfoamazon-linux-2023-upgrade-samba-winbindamazon-linux-2023-upgrade-samba-winbind-clientsamazon-linux-2023-upgrade-samba-winbind-clients-debuginfoamazon-linux-2023-upgrade-samba-winbind-debuginfoamazon-linux-2023-upgrade-samba-winbind-krb5-locatoramazon-linux-2023-upgrade-samba-winbind-krb5-locator-debuginfoamazon-linux-2023-upgrade-samba-winbind-modulesamazon-linux-2023-upgrade-samba-winbind-modules-debuginfo
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.