vulnerability

Huawei EulerOS: CVE-2021-3671: samba security update

Severity
4
CVSS
(AV:N/AC:L/Au:S/C:N/I:N/A:P)
Published
Oct 12, 2021
Added
Feb 24, 2022
Modified
Nov 26, 2024

Description

A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authenticated user could use this flaw to crash the samba server.

Solution(s)

huawei-euleros-2_0_sp3-upgrade-libsmbclienthuawei-euleros-2_0_sp3-upgrade-libwbclienthuawei-euleros-2_0_sp3-upgrade-sambahuawei-euleros-2_0_sp3-upgrade-samba-clienthuawei-euleros-2_0_sp3-upgrade-samba-client-libshuawei-euleros-2_0_sp3-upgrade-samba-commonhuawei-euleros-2_0_sp3-upgrade-samba-common-libshuawei-euleros-2_0_sp3-upgrade-samba-common-toolshuawei-euleros-2_0_sp3-upgrade-samba-libshuawei-euleros-2_0_sp3-upgrade-samba-pythonhuawei-euleros-2_0_sp3-upgrade-samba-winbindhuawei-euleros-2_0_sp3-upgrade-samba-winbind-clientshuawei-euleros-2_0_sp3-upgrade-samba-winbind-modules
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.