Wind River Support Network

HomeDefectsLIN8-2458
Fixed

LIN8-2458 : Security Advisory - samba - CVE-2015-5330

Created: Jan 13, 2016    Updated: Dec 3, 2018
Resolved Date: Feb 4, 2016
Found In Version: 8.0
Fix Version: 8.0.0.2
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace

Description

ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles string lengths, which allows remote attackers to obtain sensitive information from daemon heap memory by sending crafted packets and then reading (1) an error message or (2) a database value.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-5330

Other Downloads


CVEs


Live chat
Online