Nixpkgs security tracker

Untriaged

Permalink CVE-2023-5568

5.9 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): LOW
Availability impact (A): HIGH

created 1 year, 2 months ago

Samba: heap buffer overflow with freshness tokens in the heimdal kdc

A heap-based Buffer Overflow flaw was discovered in Samba. It could allow a remote, authenticated attacker to exploit this vulnerability to cause a denial of service.

References

https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHAT
RHBZ#2245174 x_refsource_REDHATissue-tracking
https://bugzilla.samba.org/show_bug.cgi?id=15491
https://www.samba.org/samba/history/samba-4.19.2.html
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2245174 x_refsource_REDHATissue-trackingx_transferred
https://bugzilla.samba.org/show_bug.cgi?id=15491 x_transferred
https://security.netapp.com/advisory/ntap-20231124-0007/ x_transferred
https://www.samba.org/samba/history/samba-4.19.2.html x_transferred
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHAT
RHBZ#2245174 x_refsource_REDHATissue-tracking
https://bugzilla.samba.org/show_bug.cgi?id=15491
https://www.samba.org/samba/history/samba-4.19.2.html
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHAT
RHBZ#2245174 x_refsource_REDHATissue-tracking
https://bugzilla.samba.org/show_bug.cgi?id=15491
https://www.samba.org/samba/history/samba-4.19.2.html
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHAT
RHBZ#2245174 x_refsource_REDHATissue-tracking
https://bugzilla.samba.org/show_bug.cgi?id=15491
https://www.samba.org/samba/history/samba-4.19.2.html
https://security.netapp.com/advisory/ntap-20231124-0007/
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHAT
RHBZ#2245174 x_refsource_REDHATissue-tracking
https://bugzilla.samba.org/show_bug.cgi?id=15491
https://security.netapp.com/advisory/ntap-20231124-0007/
https://www.samba.org/samba/history/samba-4.19.2.html
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHAT
RHBZ#2245174 x_refsource_REDHATissue-tracking
https://bugzilla.samba.org/show_bug.cgi?id=15491
https://security.netapp.com/advisory/ntap-20231124-0007/
https://www.samba.org/samba/history/samba-4.19.2.html
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2245174 x_refsource_REDHATissue-trackingx_transferred
https://bugzilla.samba.org/show_bug.cgi?id=15491 x_transferred
https://security.netapp.com/advisory/ntap-20231124-0007/ x_transferred
https://www.samba.org/samba/history/samba-4.19.2.html x_transferred
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHAT
RHBZ#2245174 x_refsource_REDHATissue-tracking
https://bugzilla.samba.org/show_bug.cgi?id=15491
https://security.netapp.com/advisory/ntap-20231124-0007/
https://www.samba.org/samba/history/samba-4.19.2.html
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2245174 x_refsource_REDHATissue-trackingx_transferred
https://bugzilla.samba.org/show_bug.cgi?id=15491 x_transferred
https://security.netapp.com/advisory/ntap-20231124-0007/ x_transferred
https://www.samba.org/samba/history/samba-4.19.2.html x_transferred
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHAT
RHBZ#2245174 x_refsource_REDHATissue-tracking
https://bugzilla.samba.org/show_bug.cgi?id=15491
https://www.samba.org/samba/history/samba-4.19.2.html
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2245174 x_refsource_REDHATissue-trackingx_transferred
https://bugzilla.samba.org/show_bug.cgi?id=15491 x_transferred
https://security.netapp.com/advisory/ntap-20231124-0007/ x_transferred
https://www.samba.org/samba/history/samba-4.19.2.html x_transferred
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHAT
RHBZ#2245174 x_refsource_REDHATissue-tracking
https://bugzilla.samba.org/show_bug.cgi?id=15491
https://www.samba.org/samba/history/samba-4.19.2.html
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2245174 x_refsource_REDHATissue-trackingx_transferred
https://bugzilla.samba.org/show_bug.cgi?id=15491 x_transferred
https://security.netapp.com/advisory/ntap-20231124-0007/ x_transferred
https://www.samba.org/samba/history/samba-4.19.2.html x_transferred
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHAT
RHBZ#2245174 x_refsource_REDHATissue-tracking
https://bugzilla.samba.org/show_bug.cgi?id=15491
https://www.samba.org/samba/history/samba-4.19.2.html
https://access.redhat.com/security/cve/CVE-2023-5568 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2245174 x_refsource_REDHATissue-trackingx_transferred
https://bugzilla.samba.org/show_bug.cgi?id=15491 x_transferred
https://security.netapp.com/advisory/ntap-20231124-0007/ x_transferred
https://www.samba.org/samba/history/samba-4.19.2.html x_transferred

Affected products

samba

==4.19.2

Matching in nixpkgs

pkgs.samba

Standard Windows interoperability suite of programs for Linux and Unix

nixos-unstable 4.20.4
- nixpkgs-unstable 4.20.4

pkgs.samba4

Standard Windows interoperability suite of programs for Linux and Unix

nixos-unstable 4.20.4
- nixpkgs-unstable 4.20.4
- nixos-unstable-small 4.20.4

pkgs.sambamba

SAM/BAM processing tool

nixos-unstable 1.0.1
- nixpkgs-unstable 1.0.1
- nixos-unstable-small 1.0.1

pkgs.sambaFull

Standard Windows interoperability suite of programs for Linux and Unix

nixos-unstable 4.20.4
- nixpkgs-unstable 4.20.4
- nixos-unstable-small 4.20.4

pkgs.samba4Full

Standard Windows interoperability suite of programs for Linux and Unix

nixos-unstable 4.20.4
- nixpkgs-unstable 4.20.4
- nixos-unstable-small 4.20.4

Package maintainers

@aneeshusa Aneesh Agrawal <aneeshusa@gmail.com>
@jbedo Justin Bedő <cu@cua0.org>

Suggestion detail

References

Affected products

Matching in nixpkgs

pkgs.samba

pkgs.samba4

pkgs.sambamba

pkgs.sambaFull

pkgs.samba4Full

Package maintainers