vulnerability

Rocky Linux: CVE-2020-14323: samba (RLSA-2021-1647)

Try Surface Command
Back to search
Severity
2
CVSS
(AV:L/AC:L/Au:N/C:N/I:N/A:P)
Published
Oct 29, 2020
Added
Mar 12, 2024
Modified
Aug 13, 2025

Description

A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service.

Solutions

rocky-upgrade-ctdbrocky-upgrade-ctdb-debuginforocky-upgrade-ctdb-testsrocky-upgrade-ctdb-tests-debuginforocky-upgrade-libsmbclientrocky-upgrade-libsmbclient-debuginforocky-upgrade-libsmbclient-develrocky-upgrade-libwbclientrocky-upgrade-libwbclient-debuginforocky-upgrade-libwbclient-develrocky-upgrade-openchangerocky-upgrade-openchange-debuginforocky-upgrade-openchange-debugsourcerocky-upgrade-python3-sambarocky-upgrade-python3-samba-debuginforocky-upgrade-python3-samba-testrocky-upgrade-sambarocky-upgrade-samba-clientrocky-upgrade-samba-client-debuginforocky-upgrade-samba-client-libsrocky-upgrade-samba-client-libs-debuginforocky-upgrade-samba-common-libsrocky-upgrade-samba-common-libs-debuginforocky-upgrade-samba-common-toolsrocky-upgrade-samba-common-tools-debuginforocky-upgrade-samba-debuginforocky-upgrade-samba-debugsourcerocky-upgrade-samba-develrocky-upgrade-samba-krb5-printingrocky-upgrade-samba-krb5-printing-debuginforocky-upgrade-samba-libsrocky-upgrade-samba-libs-debuginforocky-upgrade-samba-testrocky-upgrade-samba-test-debuginforocky-upgrade-samba-test-libsrocky-upgrade-samba-test-libs-debuginforocky-upgrade-samba-winbindrocky-upgrade-samba-winbind-clientsrocky-upgrade-samba-winbind-clients-debuginforocky-upgrade-samba-winbind-debuginforocky-upgrade-samba-winbind-krb5-locatorrocky-upgrade-samba-winbind-krb5-locator-debuginforocky-upgrade-samba-winbind-modulesrocky-upgrade-samba-winbind-modules-debuginforocky-upgrade-samba-winexerocky-upgrade-samba-winexe-debuginfo

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today