vulnerability
SUSE: CVE-2021-43566: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 1 | (AV:L/AC:H/Au:N/C:N/I:P/A:N) | Jan 11, 2022 | Feb 2, 2022 | Oct 26, 2022 |
Severity
1
CVSS
(AV:L/AC:H/Au:N/C:N/I:P/A:N)
Published
Jan 11, 2022
Added
Feb 2, 2022
Modified
Oct 26, 2022
Description
All versions of Samba prior to 4.13.16 are vulnerable to a malicious client using an SMB1 or NFS race to allow a directory to be created in an area of the server file system not exported under the share definition. Note that SMB1 has to be enabled, or the share also available via NFS in order for this attack to succeed.
Solutions
suse-upgrade-apache2-mod_apparmorsuse-upgrade-apparmor-abstractionssuse-upgrade-apparmor-docssuse-upgrade-apparmor-parsersuse-upgrade-apparmor-parser-langsuse-upgrade-apparmor-profilessuse-upgrade-apparmor-utilssuse-upgrade-apparmor-utils-langsuse-upgrade-ca-certificatessuse-upgrade-ctdbsuse-upgrade-ctdb-pcp-pmdasuse-upgrade-krb5suse-upgrade-krb5-32bitsuse-upgrade-krb5-clientsuse-upgrade-krb5-develsuse-upgrade-krb5-devel-32bitsuse-upgrade-krb5-minisuse-upgrade-krb5-mini-develsuse-upgrade-krb5-plugin-kdb-ldapsuse-upgrade-krb5-plugin-preauth-otpsuse-upgrade-krb5-plugin-preauth-pkinitsuse-upgrade-krb5-plugin-preauth-spakesuse-upgrade-krb5-serversuse-upgrade-ldb-toolssuse-upgrade-libapparmor-develsuse-upgrade-libapparmor1suse-upgrade-libapparmor1-32bitsuse-upgrade-libgnutls30suse-upgrade-libgnutls30-32bitsuse-upgrade-libhogweed4suse-upgrade-libhogweed4-32bitsuse-upgrade-libipa_hbac-develsuse-upgrade-libipa_hbac0suse-upgrade-libldb-develsuse-upgrade-libldb2suse-upgrade-libldb2-32bitsuse-upgrade-libnettle6suse-upgrade-libnettle6-32bitsuse-upgrade-libnfsidmap-ssssuse-upgrade-libp11-kit0suse-upgrade-libp11-kit0-32bitsuse-upgrade-libsamba-policy-develsuse-upgrade-libsamba-policy-python3-develsuse-upgrade-libsamba-policy0-python3suse-upgrade-libsamba-policy0-python3-32bitsuse-upgrade-libsamba-policy0-python3-64bitsuse-upgrade-libsss_certmap-develsuse-upgrade-libsss_certmap0suse-upgrade-libsss_idmap-develsuse-upgrade-libsss_idmap0suse-upgrade-libsss_nss_idmap-develsuse-upgrade-libsss_nss_idmap0suse-upgrade-libsss_simpleifp-develsuse-upgrade-libsss_simpleifp0suse-upgrade-libtalloc-develsuse-upgrade-libtalloc2suse-upgrade-libtalloc2-32bitsuse-upgrade-libtdb-develsuse-upgrade-libtdb1suse-upgrade-libtdb1-32bitsuse-upgrade-libtevent-develsuse-upgrade-libtevent0suse-upgrade-libtevent0-32bitsuse-upgrade-p11-kitsuse-upgrade-p11-kit-32bitsuse-upgrade-p11-kit-develsuse-upgrade-p11-kit-nss-trustsuse-upgrade-p11-kit-toolssuse-upgrade-pam_apparmorsuse-upgrade-pam_apparmor-32bitsuse-upgrade-perl-apparmorsuse-upgrade-python-sssd-configsuse-upgrade-python3-apparmorsuse-upgrade-python3-ipa_hbacsuse-upgrade-python3-ldbsuse-upgrade-python3-ldb-32bitsuse-upgrade-python3-ldb-develsuse-upgrade-python3-sss-murmursuse-upgrade-python3-sss_nss_idmapsuse-upgrade-python3-sssd-configsuse-upgrade-python3-tallocsuse-upgrade-python3-talloc-32bitsuse-upgrade-python3-talloc-develsuse-upgrade-python3-tdbsuse-upgrade-python3-tdb-32bitsuse-upgrade-python3-teventsuse-upgrade-python3-tevent-32bitsuse-upgrade-ruby-apparmorsuse-upgrade-sambasuse-upgrade-samba-ad-dcsuse-upgrade-samba-ad-dc-libssuse-upgrade-samba-ad-dc-libs-32bitsuse-upgrade-samba-cephsuse-upgrade-samba-clientsuse-upgrade-samba-client-32bitsuse-upgrade-samba-client-64bitsuse-upgrade-samba-client-libssuse-upgrade-samba-client-libs-32bitsuse-upgrade-samba-develsuse-upgrade-samba-devel-32bitsuse-upgrade-samba-docsuse-upgrade-samba-dsdb-modulessuse-upgrade-samba-gpupdatesuse-upgrade-samba-ldb-ldapsuse-upgrade-samba-libssuse-upgrade-samba-libs-32bitsuse-upgrade-samba-libs-64bitsuse-upgrade-samba-libs-python3suse-upgrade-samba-libs-python3-32bitsuse-upgrade-samba-libs-python3-64bitsuse-upgrade-samba-python3suse-upgrade-samba-testsuse-upgrade-samba-toolsuse-upgrade-samba-winbindsuse-upgrade-samba-winbind-libssuse-upgrade-samba-winbind-libs-32bitsuse-upgrade-sssdsuse-upgrade-sssd-adsuse-upgrade-sssd-commonsuse-upgrade-sssd-dbussuse-upgrade-sssd-ipasuse-upgrade-sssd-krb5suse-upgrade-sssd-krb5-commonsuse-upgrade-sssd-ldapsuse-upgrade-sssd-proxysuse-upgrade-sssd-toolssuse-upgrade-sssd-wbclientsuse-upgrade-sssd-wbclient-develsuse-upgrade-sssd-winbind-idmapsuse-upgrade-talloc-mansuse-upgrade-tdb-toolssuse-upgrade-tevent-mansuse-upgrade-yast2-samba-client
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.