Wind River Support Network

HomeDefectsLIN1021-39

Fixed

LIN1021-39 : Security Advisory - samba - CVE-2021-20254

Created: May 17, 2021 Updated: Mar 7, 2022

Resolved Date: Jul 20, 2021

Found In Version: 10.21.20.1

Fix Version: 10.21.20.3

Severity: Standard

Applicable for: Wind River Linux LTS 21

Component/s: Userspace

Description

A coding error converting SIDs to gids could allow unexpected group entries in a process token. This could allow unauthorized access to files.

https://www.samba.org/samba/security/CVE-2021-20254.html

CREATE(Triage):(User=admin) CVE-2021-20254 (https://nvd.nist.gov/vuln/detail/CVE-2021-20254)

CVEs

CVE-2021-20254