Risk | High |
Patch available | YES |
Number of vulnerabilities | 3 |
CVE-ID | CVE-2016-2124 CVE-2020-25717 CVE-2021-23192 |
CWE-ID | CWE-284 CWE-264 CWE-20 |
Exploitation vector | Network |
Public exploit | N/A |
Vulnerable software |
SUSE Linux Enterprise High Availability Operating systems & Components / Operating system SUSE Linux Enterprise Software Development Kit Operating systems & Components / Operating system SUSE Linux Enterprise Server Operating systems & Components / Operating system ctdb-debuginfo Operating systems & Components / Operating system package or component ctdb Operating systems & Components / Operating system package or component samba-doc Operating systems & Components / Operating system package or component samba-winbind-debuginfo-32bit Operating systems & Components / Operating system package or component samba-winbind-32bit Operating systems & Components / Operating system package or component samba-libs-python3-debuginfo-32bit Operating systems & Components / Operating system package or component samba-libs-python3-32bit Operating systems & Components / Operating system package or component samba-libs-debuginfo-32bit Operating systems & Components / Operating system package or component samba-libs-32bit Operating systems & Components / Operating system package or component samba-client-debuginfo-32bit Operating systems & Components / Operating system package or component samba-client-32bit Operating systems & Components / Operating system package or component libwbclient0-debuginfo-32bit Operating systems & Components / Operating system package or component libwbclient0-32bit Operating systems & Components / Operating system package or component libtevent-util0-debuginfo-32bit Operating systems & Components / Operating system package or component libtevent-util0-32bit Operating systems & Components / Operating system package or component libsmbldap2-debuginfo-32bit Operating systems & Components / Operating system package or component libsmbldap2-32bit Operating systems & Components / Operating system package or component libsmbconf0-debuginfo-32bit Operating systems & Components / Operating system package or component libsmbconf0-32bit Operating systems & Components / Operating system package or component libsmbclient0-debuginfo-32bit Operating systems & Components / Operating system package or component libsmbclient0-32bit Operating systems & Components / Operating system package or component libsamdb0-debuginfo-32bit Operating systems & Components / Operating system package or component libsamdb0-32bit Operating systems & Components / Operating system package or component libsamba-util0-debuginfo-32bit Operating systems & Components / Operating system package or component libsamba-util0-32bit Operating systems & Components / Operating system package or component libsamba-passdb0-debuginfo-32bit Operating systems & Components / Operating system package or component libsamba-passdb0-32bit Operating systems & Components / Operating system package or component libsamba-hostconfig0-debuginfo-32bit Operating systems & Components / Operating system package or component libsamba-hostconfig0-32bit Operating systems & Components / Operating system package or component libsamba-errors0-debuginfo-32bit Operating systems & Components / Operating system package or component libsamba-errors0-32bit Operating systems & Components / Operating system package or component libsamba-credentials0-debuginfo-32bit Operating systems & Components / Operating system package or component libsamba-credentials0-32bit Operating systems & Components / Operating system package or component libnetapi0-debuginfo-32bit Operating systems & Components / Operating system package or component libnetapi0-32bit Operating systems & Components / Operating system package or component libndr0-debuginfo-32bit Operating systems & Components / Operating system package or component libndr0-32bit Operating systems & Components / Operating system package or component libndr-standard0-debuginfo-32bit Operating systems & Components / Operating system package or component libndr-standard0-32bit Operating systems & Components / Operating system package or component libndr-nbt0-debuginfo-32bit Operating systems & Components / Operating system package or component libndr-nbt0-32bit Operating systems & Components / Operating system package or component libndr-krb5pac0-debuginfo-32bit Operating systems & Components / Operating system package or component libndr-krb5pac0-32bit Operating systems & Components / Operating system package or component libdcerpc0-debuginfo-32bit Operating systems & Components / Operating system package or component libdcerpc0-32bit Operating systems & Components / Operating system package or component libdcerpc-binding0-debuginfo-32bit Operating systems & Components / Operating system package or component libdcerpc-binding0-32bit Operating systems & Components / Operating system package or component samba-winbind-debuginfo Operating systems & Components / Operating system package or component samba-winbind Operating systems & Components / Operating system package or component samba-libs-python3-debuginfo Operating systems & Components / Operating system package or component samba-libs-python3 Operating systems & Components / Operating system package or component samba-libs-debuginfo Operating systems & Components / Operating system package or component samba-libs Operating systems & Components / Operating system package or component samba-client-debuginfo Operating systems & Components / Operating system package or component samba-client Operating systems & Components / Operating system package or component samba Operating systems & Components / Operating system package or component libwbclient0-debuginfo Operating systems & Components / Operating system package or component libwbclient0 Operating systems & Components / Operating system package or component libtevent-util0-debuginfo Operating systems & Components / Operating system package or component libtevent-util0 Operating systems & Components / Operating system package or component libsmbldap2-debuginfo Operating systems & Components / Operating system package or component libsmbldap2 Operating systems & Components / Operating system package or component libsmbconf0-debuginfo Operating systems & Components / Operating system package or component libsmbconf0 Operating systems & Components / Operating system package or component libsmbclient0-debuginfo Operating systems & Components / Operating system package or component libsmbclient0 Operating systems & Components / Operating system package or component libsamdb0-debuginfo Operating systems & Components / Operating system package or component libsamdb0 Operating systems & Components / Operating system package or component libsamba-util0-debuginfo Operating systems & Components / Operating system package or component libsamba-util0 Operating systems & Components / Operating system package or component libsamba-passdb0-debuginfo Operating systems & Components / Operating system package or component libsamba-passdb0 Operating systems & Components / Operating system package or component libsamba-hostconfig0-debuginfo Operating systems & Components / Operating system package or component libsamba-hostconfig0 Operating systems & Components / Operating system package or component libsamba-errors0-debuginfo Operating systems & Components / Operating system package or component libsamba-errors0 Operating systems & Components / Operating system package or component libsamba-credentials0-debuginfo Operating systems & Components / Operating system package or component libsamba-credentials0 Operating systems & Components / Operating system package or component libnetapi0-debuginfo Operating systems & Components / Operating system package or component libnetapi0 Operating systems & Components / Operating system package or component libndr0-debuginfo Operating systems & Components / Operating system package or component libndr0 Operating systems & Components / Operating system package or component libndr-standard0-debuginfo Operating systems & Components / Operating system package or component libndr-standard0 Operating systems & Components / Operating system package or component libndr-nbt0-debuginfo Operating systems & Components / Operating system package or component libndr-nbt0 Operating systems & Components / Operating system package or component libndr-krb5pac0-debuginfo Operating systems & Components / Operating system package or component libndr-krb5pac0 Operating systems & Components / Operating system package or component libdcerpc0-debuginfo Operating systems & Components / Operating system package or component libdcerpc0 Operating systems & Components / Operating system package or component libdcerpc-binding0-debuginfo Operating systems & Components / Operating system package or component libdcerpc-binding0 Operating systems & Components / Operating system package or component samba-debugsource Operating systems & Components / Operating system package or component samba-debuginfo Operating systems & Components / Operating system package or component samba-core-devel Operating systems & Components / Operating system package or component libwbclient-devel Operating systems & Components / Operating system package or component libsmbclient-devel Operating systems & Components / Operating system package or component libsamba-util-devel Operating systems & Components / Operating system package or component libndr-standard-devel Operating systems & Components / Operating system package or component libndr-nbt-devel Operating systems & Components / Operating system package or component libndr-krb5pac-devel Operating systems & Components / Operating system package or component libndr-devel Operating systems & Components / Operating system package or component |
Vendor | SUSE |
Security Bulletin
This security bulletin contains information about 3 vulnerabilities.
EUVDB-ID: #VU58098
Risk: High
CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2016-2124
CWE-ID:
CWE-284 - Improper Access Control
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to SMB1 client connections can be downgraded to plaintext authentication. A remote attacker can perform a man-in-the-middle attack and downgrade a negotiated SMB1 client connection and its capabitilities.
MitigationUpdate the affected package samba to the latest version.
Vulnerable software versionsSUSE Linux Enterprise High Availability: 12-SP5
SUSE Linux Enterprise Software Development Kit: 12-SP5
SUSE Linux Enterprise Server: 12-SP5
ctdb-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
ctdb: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-doc: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-winbind-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-winbind-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-python3-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-python3-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-client-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-client-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libtevent-util0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libtevent-util0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbldap2-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbldap2-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbconf0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbconf0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamdb0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamdb0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-passdb0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-passdb0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-hostconfig0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-hostconfig0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-errors0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-errors0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-credentials0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-credentials0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libnetapi0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libnetapi0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc-binding0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc-binding0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-winbind-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-winbind: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-python3-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-python3: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-client-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-client: before 4.10.18+git.339.c912385a5e1-3.41.1
samba: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient0: before 4.10.18+git.339.c912385a5e1-3.41.1
libtevent-util0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libtevent-util0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbldap2-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbldap2: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbconf0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbconf0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamdb0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamdb0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-passdb0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-passdb0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-hostconfig0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-hostconfig0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-errors0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-errors0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-credentials0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-credentials0: before 4.10.18+git.339.c912385a5e1-3.41.1
libnetapi0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libnetapi0: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr0: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard0: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt0: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac0: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc0: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc-binding0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc-binding0: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-debugsource: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-core-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
CPE2.3https://www.suse.com/support/update/announcement/2021/suse-su-20213649-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU58097
Risk: Medium
CVSSv4.0: 6.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2020-25717
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to escalate privileges on the system.
The vulnerability exists due to the Windows Active Directory (AD) domains have by default a feature to allow users to create computer accounts. A remote authenticated attacker can create such account with elevated privileges on the system.
MitigationUpdate the affected package samba to the latest version.
Vulnerable software versionsSUSE Linux Enterprise High Availability: 12-SP5
SUSE Linux Enterprise Software Development Kit: 12-SP5
SUSE Linux Enterprise Server: 12-SP5
ctdb-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
ctdb: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-doc: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-winbind-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-winbind-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-python3-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-python3-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-client-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-client-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libtevent-util0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libtevent-util0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbldap2-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbldap2-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbconf0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbconf0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamdb0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamdb0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-passdb0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-passdb0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-hostconfig0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-hostconfig0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-errors0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-errors0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-credentials0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-credentials0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libnetapi0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libnetapi0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc-binding0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc-binding0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-winbind-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-winbind: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-python3-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-python3: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-client-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-client: before 4.10.18+git.339.c912385a5e1-3.41.1
samba: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient0: before 4.10.18+git.339.c912385a5e1-3.41.1
libtevent-util0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libtevent-util0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbldap2-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbldap2: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbconf0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbconf0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamdb0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamdb0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-passdb0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-passdb0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-hostconfig0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-hostconfig0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-errors0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-errors0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-credentials0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-credentials0: before 4.10.18+git.339.c912385a5e1-3.41.1
libnetapi0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libnetapi0: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr0: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard0: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt0: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac0: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc0: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc-binding0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc-binding0: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-debugsource: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-core-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
CPE2.3https://www.suse.com/support/update/announcement/2021/suse-su-20213649-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU58091
Risk: Medium
CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2021-23192
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to the DCE/RPC fragment injection issue. A remote attacker can replace subsequent fragments in requests with their own data and alter the server behavior.
MitigationUpdate the affected package samba to the latest version.
Vulnerable software versionsSUSE Linux Enterprise High Availability: 12-SP5
SUSE Linux Enterprise Software Development Kit: 12-SP5
SUSE Linux Enterprise Server: 12-SP5
ctdb-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
ctdb: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-doc: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-winbind-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-winbind-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-python3-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-python3-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-client-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-client-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libtevent-util0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libtevent-util0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbldap2-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbldap2-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbconf0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbconf0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamdb0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamdb0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-passdb0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-passdb0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-hostconfig0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-hostconfig0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-errors0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-errors0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-credentials0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-credentials0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libnetapi0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libnetapi0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc-binding0-debuginfo-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc-binding0-32bit: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-winbind-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-winbind: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-python3-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-python3: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-libs: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-client-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-client: before 4.10.18+git.339.c912385a5e1-3.41.1
samba: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient0: before 4.10.18+git.339.c912385a5e1-3.41.1
libtevent-util0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libtevent-util0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbldap2-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbldap2: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbconf0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbconf0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamdb0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamdb0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-passdb0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-passdb0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-hostconfig0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-hostconfig0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-errors0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-errors0: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-credentials0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-credentials0: before 4.10.18+git.339.c912385a5e1-3.41.1
libnetapi0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libnetapi0: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr0: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard0: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt0: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac0: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc0: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc-binding0-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
libdcerpc-binding0: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-debugsource: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-debuginfo: before 4.10.18+git.339.c912385a5e1-3.41.1
samba-core-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libwbclient-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libsmbclient-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libsamba-util-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-standard-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-nbt-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-krb5pac-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
libndr-devel: before 4.10.18+git.339.c912385a5e1-3.41.1
CPE2.3https://www.suse.com/support/update/announcement/2021/suse-su-20213649-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.