CVE-2020-14323

Published: Oct 29, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service.

Vendor	Product	Versions
n/a	Samba	affected `All samba versions before 4.11.15, before 4.12.9 and before 4.13.1`

Weaknesses (CWE)

CWE-170

References

https://bugzilla.redhat.com/show_bug.cgi?id=1891685

https://www.samba.org/samba/security/CVE-2020-14323.html

openSUSE-SU-2020:1811

vendor-advisory

openSUSE-SU-2020:1819

vendor-advisory

FEDORA-2020-c1e9ae02d2

vendor-advisory

https://security.netapp.com/advisory/ntap-20201103-0001/

FEDORA-2020-2e1a1489be

vendor-advisory

[debian-lts-announce] 20201123 [SECURITY] [DLA 2463-1] samba security update

mailing-list

GLSA-202012-24

vendor-advisory

[debian-lts-announce] 20240422 [SECURITY] [DLA 3792-1] samba security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-14323

Description

Affected Products

Weaknesses (CWE)

References