Your submission was sent successfully! Close

CVE-2019-3824

Published: 25 February 2019

A flaw was found in the way an LDAP search expression could crash the shared LDAP server process of a samba AD DC in samba before version 4.10. An authenticated user, having read permissions on the LDAP server, could use this flaw to cause denial of service.

Priority

Medium

CVSS 3 base score: 6.5

Status

Package Release Status
ldb
Launchpad, Ubuntu, Debian
bionic
Released (2:1.2.3-1ubuntu0.1)
cosmic
Released (2:1.4.0+really1.3.5-2ubuntu0.1)
precise Does not exist

trusty
Released (1:1.1.24-0ubuntu0.14.04.2)
upstream Needs triage

xenial
Released (2:1.1.24-1ubuntu3.1)