ALT-PU-2019-2648-1
Closed vulnerabilities
Published: 2019-09-03
BDU:2019-03211
Уязвимость SMB-сервера (файл конфигурации smb.conf) пакета программ для сетевого взаимодействия Samba, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
Severity: CRITICAL (9.1)
Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
References:
Published: 2019-09-03
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2019-10197
A flaw was found in samba versions 4.9.x up to 4.9.13, samba 4.10.x up to 4.10.8 and samba 4.11.x up to 4.11.0rc3, when certain parameters were set in the samba configuration file. An unauthenticated attacker could use this flaw to escape the shared directory and access the contents of directories outside the share.
Severity: CRITICAL (9.1)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
References:
- openSUSE-SU-2019:2142
- openSUSE-SU-2019:2142
- RHSA-2019:3253
- RHSA-2019:3253
- RHSA-2019:4023
- RHSA-2019:4023
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10197
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10197
- FEDORA-2019-eb1e982800
- FEDORA-2019-eb1e982800
- FEDORA-2019-e3e521e5b3
- FEDORA-2019-e3e521e5b3
- FEDORA-2019-41c7fa478a
- FEDORA-2019-41c7fa478a
- 20190904 [SECURITY] [DSA 4513-1] samba security update
- 20190904 [SECURITY] [DSA 4513-1] samba security update
- GLSA-202003-52
- GLSA-202003-52
- https://security.netapp.com/advisory/ntap-20190903-0001/
- https://security.netapp.com/advisory/ntap-20190903-0001/
- https://support.f5.com/csp/article/K69511801
- https://support.f5.com/csp/article/K69511801
- https://support.f5.com/csp/article/K69511801?utm_source=f5support&%3Butm_medium=RSS
- https://support.f5.com/csp/article/K69511801?utm_source=f5support&%3Butm_medium=RSS
- USN-4121-1
- USN-4121-1
- DSA-4513
- DSA-4513
- https://www.samba.org/samba/security/CVE-2019-10197.html
- https://www.samba.org/samba/security/CVE-2019-10197.html