The LDAP server in the AD domain controller in Samba 4.x before 4.1.22 does not check return values to ensure successful ASN.1 memory allocation, which allows remote attackers to cause a denial of service (memory consumption and daemon crash) via crafted packets.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
07 Nov 2023, 02:27
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
29 Aug 2022, 20:44
Type | Values Removed | Values Added |
---|---|---|
References | (GENTOO) https://security.gentoo.org/glsa/201612-47 - Third Party Advisory | |
References | (CONFIRM) https://git.samba.org/?p=samba.git;a=commit;h=530d50a1abdcdf4d1775652d4c456c1274d83d8d - Patch, Vendor Advisory | |
References | (CONFIRM) http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html - Third Party Advisory | |
References | (BID) http://www.securityfocus.com/bid/79736 - Third Party Advisory, VDB Entry | |
References | (SECTRACK) http://www.securitytracker.com/id/1034492 - Third Party Advisory, VDB Entry | |
References | (FEDORA) http://lists.fedoraproject.org/pipermail/package-announce/2015-December/174076.html - Third Party Advisory | |
References | (CONFIRM) https://git.samba.org/?p=samba.git;a=commit;h=9d989c9dd7a5b92d0c5d65287935471b83b6e884 - Patch, Vendor Advisory | |
References | (FEDORA) http://lists.fedoraproject.org/pipermail/package-announce/2015-December/174391.html - Third Party Advisory | |
References | (SUSE) http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00033.html - Mailing List, Third Party Advisory | |
References | (UBUNTU) http://www.ubuntu.com/usn/USN-2855-2 - Third Party Advisory | |
References | (UBUNTU) http://www.ubuntu.com/usn/USN-2855-1 - Third Party Advisory | |
References | (DEBIAN) http://www.debian.org/security/2016/dsa-3433 - Third Party Advisory | |
References | (CONFIRM) https://bugzilla.redhat.com/show_bug.cgi?id=1288451 - Issue Tracking, Third Party Advisory | |
First Time |
Canonical
Debian debian Linux Debian Canonical ubuntu Linux |
|
CPE | cpe:2.3:a:samba:samba:4.0.21:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.7:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.24:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.9:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.14:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.6:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.16:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.13:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.18:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.8:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.5:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.9:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.18:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.0:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.4:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.6:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.12:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.11:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.10:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.5:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.0:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.19:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.2.4:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.3:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.17:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.20:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.10:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.12:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.4:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.20:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.11:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.22:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.15:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.8:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.1:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.19:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.14:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.16:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.23:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.17:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.7:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.3:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.2:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.2:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.13:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.1.15:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:4.0.1:*:*:*:*:*:*:* |
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:* cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:* cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:* |
Information
Published : 2015-12-29 22:59
Updated : 2023-12-10 11:46
NVD link : CVE-2015-7540
Mitre link : CVE-2015-7540
CVE.ORG link : CVE-2015-7540
JSON object : View
Products Affected
canonical
- ubuntu_linux
samba
- samba
debian
- debian_linux
CWE
CWE-399
Resource Management Errors