Rapid7 Vulnerability & Exploit Database

SUSE: CVE-2021-43566: SUSE Linux Security Advisory

Free InsightVM Trial No Credit Card Necessary

Watch Demo See how it all works

Back to Search

SUSE: CVE-2021-43566: SUSE Linux Security Advisory

Severity

CVSS

(AV:L/AC:H/Au:N/C:N/I:P/A:N)

Published

01/11/2022

Created

02/04/2022

Added

02/02/2022

Modified

10/26/2022

Description

All versions of Samba prior to 4.13.16 are vulnerable to a malicious client using an SMB1 or NFS race to allow a directory to be created in an area of the server file system not exported under the share definition. Note that SMB1 has to be enabled, or the share also available via NFS in order for this attack to succeed.

Solution(s)

suse-upgrade-apache2-mod_apparmor
suse-upgrade-apparmor-abstractions
suse-upgrade-apparmor-docs
suse-upgrade-apparmor-parser
suse-upgrade-apparmor-parser-lang
suse-upgrade-apparmor-profiles
suse-upgrade-apparmor-utils
suse-upgrade-apparmor-utils-lang
suse-upgrade-ca-certificates
suse-upgrade-ctdb
suse-upgrade-ctdb-pcp-pmda
suse-upgrade-krb5
suse-upgrade-krb5-32bit
suse-upgrade-krb5-client
suse-upgrade-krb5-devel
suse-upgrade-krb5-devel-32bit
suse-upgrade-krb5-mini
suse-upgrade-krb5-mini-devel
suse-upgrade-krb5-plugin-kdb-ldap
suse-upgrade-krb5-plugin-preauth-otp
suse-upgrade-krb5-plugin-preauth-pkinit
suse-upgrade-krb5-plugin-preauth-spake
suse-upgrade-krb5-server
suse-upgrade-ldb-tools
suse-upgrade-libapparmor-devel
suse-upgrade-libapparmor1
suse-upgrade-libapparmor1-32bit
suse-upgrade-libgnutls30
suse-upgrade-libgnutls30-32bit
suse-upgrade-libhogweed4
suse-upgrade-libhogweed4-32bit
suse-upgrade-libipa_hbac-devel
suse-upgrade-libipa_hbac0
suse-upgrade-libldb-devel
suse-upgrade-libldb2
suse-upgrade-libldb2-32bit
suse-upgrade-libnettle6
suse-upgrade-libnettle6-32bit
suse-upgrade-libnfsidmap-sss
suse-upgrade-libp11-kit0
suse-upgrade-libp11-kit0-32bit
suse-upgrade-libsamba-policy-devel
suse-upgrade-libsamba-policy-python3-devel
suse-upgrade-libsamba-policy0-python3
suse-upgrade-libsamba-policy0-python3-32bit
suse-upgrade-libsamba-policy0-python3-64bit
suse-upgrade-libsss_certmap-devel
suse-upgrade-libsss_certmap0
suse-upgrade-libsss_idmap-devel
suse-upgrade-libsss_idmap0
suse-upgrade-libsss_nss_idmap-devel
suse-upgrade-libsss_nss_idmap0
suse-upgrade-libsss_simpleifp-devel
suse-upgrade-libsss_simpleifp0
suse-upgrade-libtalloc-devel
suse-upgrade-libtalloc2
suse-upgrade-libtalloc2-32bit
suse-upgrade-libtdb-devel
suse-upgrade-libtdb1
suse-upgrade-libtdb1-32bit
suse-upgrade-libtevent-devel
suse-upgrade-libtevent0
suse-upgrade-libtevent0-32bit
suse-upgrade-p11-kit
suse-upgrade-p11-kit-32bit
suse-upgrade-p11-kit-devel
suse-upgrade-p11-kit-nss-trust
suse-upgrade-p11-kit-tools
suse-upgrade-pam_apparmor
suse-upgrade-pam_apparmor-32bit
suse-upgrade-perl-apparmor
suse-upgrade-python-sssd-config
suse-upgrade-python3-apparmor
suse-upgrade-python3-ipa_hbac
suse-upgrade-python3-ldb
suse-upgrade-python3-ldb-32bit
suse-upgrade-python3-ldb-devel
suse-upgrade-python3-sss-murmur
suse-upgrade-python3-sss_nss_idmap
suse-upgrade-python3-sssd-config
suse-upgrade-python3-talloc
suse-upgrade-python3-talloc-32bit
suse-upgrade-python3-talloc-devel
suse-upgrade-python3-tdb
suse-upgrade-python3-tdb-32bit
suse-upgrade-python3-tevent
suse-upgrade-python3-tevent-32bit
suse-upgrade-ruby-apparmor
suse-upgrade-samba
suse-upgrade-samba-ad-dc
suse-upgrade-samba-ad-dc-libs
suse-upgrade-samba-ad-dc-libs-32bit
suse-upgrade-samba-ceph
suse-upgrade-samba-client
suse-upgrade-samba-client-32bit
suse-upgrade-samba-client-64bit
suse-upgrade-samba-client-libs
suse-upgrade-samba-client-libs-32bit
suse-upgrade-samba-devel
suse-upgrade-samba-devel-32bit
suse-upgrade-samba-doc
suse-upgrade-samba-dsdb-modules
suse-upgrade-samba-gpupdate
suse-upgrade-samba-ldb-ldap
suse-upgrade-samba-libs
suse-upgrade-samba-libs-32bit
suse-upgrade-samba-libs-64bit
suse-upgrade-samba-libs-python3
suse-upgrade-samba-libs-python3-32bit
suse-upgrade-samba-libs-python3-64bit
suse-upgrade-samba-python3
suse-upgrade-samba-test
suse-upgrade-samba-tool
suse-upgrade-samba-winbind
suse-upgrade-samba-winbind-libs
suse-upgrade-samba-winbind-libs-32bit
suse-upgrade-sssd
suse-upgrade-sssd-ad
suse-upgrade-sssd-common
suse-upgrade-sssd-dbus
suse-upgrade-sssd-ipa
suse-upgrade-sssd-krb5
suse-upgrade-sssd-krb5-common
suse-upgrade-sssd-ldap
suse-upgrade-sssd-proxy
suse-upgrade-sssd-tools
suse-upgrade-sssd-wbclient
suse-upgrade-sssd-wbclient-devel
suse-upgrade-sssd-winbind-idmap
suse-upgrade-talloc-man
suse-upgrade-tdb-tools
suse-upgrade-tevent-man
suse-upgrade-yast2-samba-client

References

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

SUSE: CVE-2021-43566: SUSE Linux Security Advisory

SUSE: CVE-2021-43566: SUSE Linux Security Advisory

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.