Wind River Support Network

HomeDefectsLIN10-8552

Fixed

LIN10-8552 : Security Advisory - samba - CVE-2021-20254

Created: Apr 29, 2021 Updated: May 13, 2022

Resolved Date: Sep 10, 2021

Found In Version: 10.17.41.1

Fix Version: 10.17.41.25

Severity: Standard

Applicable for: Wind River Linux LTS 17

Component/s: Userspace

Description

A coding error converting SIDs to gids could allow unexpected group entries in a process token. This could allow unauthorized access to files.

https://www.samba.org/samba/security/CVE-2021-20254.html

CREATE(Triage):(User=admin) CVE-2021-20254 (https://nvd.nist.gov/vuln/detail/CVE-2021-20254)

CVEs

CVE-2021-20254