Your submission was sent successfully! Close

CVE-2020-14323

Published: 29 October 2020

A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service.

Notes

AuthorNote
mdeslaur
This is GHSL-2020-134
Priority

Medium

CVSS 3 base score: 5.5

Status

Package Release Status
samba
Launchpad, Ubuntu, Debian
bionic
Released (2:4.7.6+dfsg~ubuntu-0ubuntu2.21)
focal
Released (2:4.11.6+dfsg-0ubuntu1.6)
groovy
Released (2:4.12.5+dfsg-3ubuntu4.1)
hirsute
Released (2:4.12.5+dfsg-3ubuntu4.1)
precise Ignored

trusty
Released (2:4.3.11+dfsg-0ubuntu0.14.04.20+esm11)
upstream
Released (4.11.15,4.12.9,4.13.1)
xenial
Released (2:4.3.11+dfsg-0ubuntu0.16.04.32)