CVE-2019-3824

Published: 25 February 2019

A flaw was found in the way an LDAP search expression could crash the shared LDAP server process of a samba AD DC in samba before version 4.10. An authenticated user, having read permissions on the LDAP server, could use this flaw to cause denial of service.

Priority

Medium

CVSS 3 base score: 6.5

Status

Package Release Status
ldb
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 18.04 LTS (Bionic Beaver)
Released (2:1.2.3-1ubuntu0.1)
Ubuntu 16.04 ESM (Xenial Xerus)
Released (2:1.1.24-1ubuntu3.1)
Ubuntu 14.04 ESM (Trusty Tahr)
Released (1:1.1.24-0ubuntu0.14.04.2)