vulnerability
SUSE: CVE-2019-14833: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:M/Au:S/C:P/I:P/A:N) | Oct 29, 2019 | Nov 6, 2019 | Feb 4, 2022 |
Severity
5
CVSS
(AV:N/AC:M/Au:S/C:P/I:P/A:N)
Published
Oct 29, 2019
Added
Nov 6, 2019
Modified
Feb 4, 2022
Description
A flaw was found in Samba, all versions starting samba 4.5.0 before samba 4.9.15, samba 4.10.10, samba 4.11.2, in the way it handles a user password change or a new password for a samba user. The Samba Active Directory Domain Controller can be configured to use a custom script to check for password complexity. This configuration can fail to verify password complexity when non-ASCII characters are used in the password, which could lead to weak passwords being set for samba users, making it vulnerable to dictionary attacks.
Solution(s)
suse-upgrade-ctdbsuse-upgrade-ctdb-pcp-pmdasuse-upgrade-ctdb-testssuse-upgrade-ldb-toolssuse-upgrade-libdcerpc-binding0suse-upgrade-libdcerpc-binding0-32bitsuse-upgrade-libdcerpc-develsuse-upgrade-libdcerpc-samr-develsuse-upgrade-libdcerpc-samr0suse-upgrade-libdcerpc-samr0-32bitsuse-upgrade-libdcerpc0suse-upgrade-libdcerpc0-32bitsuse-upgrade-libldb-develsuse-upgrade-libldb1suse-upgrade-libldb1-32bitsuse-upgrade-libndr-develsuse-upgrade-libndr-krb5pac-develsuse-upgrade-libndr-krb5pac0suse-upgrade-libndr-krb5pac0-32bitsuse-upgrade-libndr-nbt-develsuse-upgrade-libndr-nbt0suse-upgrade-libndr-nbt0-32bitsuse-upgrade-libndr-standard-develsuse-upgrade-libndr-standard0suse-upgrade-libndr-standard0-32bitsuse-upgrade-libndr0suse-upgrade-libndr0-32bitsuse-upgrade-libndr1suse-upgrade-libndr1-32bitsuse-upgrade-libnetapi-develsuse-upgrade-libnetapi0suse-upgrade-libnetapi0-32bitsuse-upgrade-libsamba-credentials-develsuse-upgrade-libsamba-credentials0suse-upgrade-libsamba-credentials0-32bitsuse-upgrade-libsamba-errors-develsuse-upgrade-libsamba-errors0suse-upgrade-libsamba-errors0-32bitsuse-upgrade-libsamba-hostconfig-develsuse-upgrade-libsamba-hostconfig0suse-upgrade-libsamba-hostconfig0-32bitsuse-upgrade-libsamba-passdb-develsuse-upgrade-libsamba-passdb0suse-upgrade-libsamba-passdb0-32bitsuse-upgrade-libsamba-policy-develsuse-upgrade-libsamba-policy-python-develsuse-upgrade-libsamba-policy-python3-develsuse-upgrade-libsamba-policy0suse-upgrade-libsamba-policy0-32bitsuse-upgrade-libsamba-policy0-python3suse-upgrade-libsamba-policy0-python3-32bitsuse-upgrade-libsamba-util-develsuse-upgrade-libsamba-util0suse-upgrade-libsamba-util0-32bitsuse-upgrade-libsamdb-develsuse-upgrade-libsamdb0suse-upgrade-libsamdb0-32bitsuse-upgrade-libsmbclient-develsuse-upgrade-libsmbclient0suse-upgrade-libsmbclient0-32bitsuse-upgrade-libsmbconf-develsuse-upgrade-libsmbconf0suse-upgrade-libsmbconf0-32bitsuse-upgrade-libsmbldap-develsuse-upgrade-libsmbldap2suse-upgrade-libsmbldap2-32bitsuse-upgrade-libtevent-util-develsuse-upgrade-libtevent-util0suse-upgrade-libtevent-util0-32bitsuse-upgrade-libwbclient-develsuse-upgrade-libwbclient0suse-upgrade-libwbclient0-32bitsuse-upgrade-python-ldbsuse-upgrade-python-ldb-develsuse-upgrade-sambasuse-upgrade-samba-ad-dcsuse-upgrade-samba-ad-dc-32bitsuse-upgrade-samba-cephsuse-upgrade-samba-clientsuse-upgrade-samba-client-32bitsuse-upgrade-samba-core-develsuse-upgrade-samba-docsuse-upgrade-samba-dsdb-modulessuse-upgrade-samba-kdcsuse-upgrade-samba-kdc-32bitsuse-upgrade-samba-libssuse-upgrade-samba-libs-32bitsuse-upgrade-samba-libs-pythonsuse-upgrade-samba-libs-python-32bitsuse-upgrade-samba-libs-python3suse-upgrade-samba-libs-python3-32bitsuse-upgrade-samba-pidlsuse-upgrade-samba-pythonsuse-upgrade-samba-python3suse-upgrade-samba-testsuse-upgrade-samba-winbindsuse-upgrade-samba-winbind-32bit
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.