Alert GCSA-20097 - Vulnerabilita' in Samba

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

*******************************************************************************

Alert ID: GCSA-20097
Data: 2 novembre 2020
Titolo: Vulnerabilita' in Samba

*******************************************************************************

:: Descrizione del problema

Sono state riscontrate vulnerabilita' multiple in Samba, sfruttando le quali
un attaccante remoto potrebbe provocare condizioni di Denial of Service e oltrepassare restrizioni di sicurezza.

:: Software interessato

Samba 3.6.0 e successivi.

:: Impatto

Denial of Service
Security Restriction Bypass

:: Soluzioni

Applicare le correzioni rilasciate dal produttore:
http://www.samba.org/samba/security/

:: Riferimenti

https://www.samba.org/samba/security/CVE-2020-14318.html
https://www.samba.org/samba/security/CVE-2020-14323.html
https://www.samba.org/samba/security/CVE-2020-14383.html
https://www.samba.org/samba/history/security.html

GARR CERT Newsletter subscribe/unsubscribe:
https://www.cert.garr.it/it/alert/ricevi-gli-alert-di-cert

-----BEGIN PGP SIGNATURE-----

iD8DBQFfn9APwZxMk2USYEIRAniDAJwMH6s9ySjaCU0pXq+2FQ3yYnWL1wCggJws
OO/HcUug1Yc7atUqoqgMT6c=
=7BvK
-----END PGP SIGNATURE-----

Cerca nel blog

alerts.gdaverio.it

Alert GCSA-20097 - Vulnerabilita' in Samba