Untriaged
Permalink
CVE-2023-5568
5.9 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): HIGH
- Privileges required (PR): LOW
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): NONE
- Integrity impact (I): LOW
- Availability impact (A): HIGH
Heap buffer overflow with freshness tokens in the heimdal kdc
A heap-based Buffer Overflow flaw was discovered in Samba. It could allow a remote, authenticated attacker to exploit this vulnerability to cause a denial of service.
References
- https://www.samba.org/samba/history/samba-4.19.2.html
- https://access.redhat.com/security/cve/CVE-2023-5568 x_refsource_REDHAT vdb-entry
- RHBZ#2245174 issue-tracking x_refsource_REDHAT
- https://bugzilla.samba.org/show_bug.cgi?id=15491
- https://security.netapp.com/advisory/ntap-20231124-0007/
- https://bugzilla.samba.org/show_bug.cgi?id=15491
- https://security.netapp.com/advisory/ntap-20231124-0007/
- https://www.samba.org/samba/history/samba-4.19.2.html
- https://access.redhat.com/security/cve/CVE-2023-5568 x_refsource_REDHAT vdb-entry
- RHBZ#2245174 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-5568 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2245174 issue-tracking x_refsource_REDHAT x_transferred
- https://bugzilla.samba.org/show_bug.cgi?id=15491 x_transferred
- https://security.netapp.com/advisory/ntap-20231124-0007/ x_transferred
- https://www.samba.org/samba/history/samba-4.19.2.html x_transferred
- https://access.redhat.com/security/cve/CVE-2023-5568 x_refsource_REDHAT vdb-entry
- RHBZ#2245174 issue-tracking x_refsource_REDHAT
- https://bugzilla.samba.org/show_bug.cgi?id=15491
- https://security.netapp.com/advisory/ntap-20231124-0007/
- https://www.samba.org/samba/history/samba-4.19.2.html
- https://access.redhat.com/security/cve/CVE-2023-5568 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2245174 issue-tracking x_refsource_REDHAT x_transferred
- https://bugzilla.samba.org/show_bug.cgi?id=15491 x_transferred
- https://security.netapp.com/advisory/ntap-20231124-0007/ x_transferred
- https://www.samba.org/samba/history/samba-4.19.2.html x_transferred
- https://access.redhat.com/security/cve/CVE-2023-5568 x_refsource_REDHAT vdb-entry
- RHBZ#2245174 issue-tracking x_refsource_REDHAT
- https://bugzilla.samba.org/show_bug.cgi?id=15491
- https://www.samba.org/samba/history/samba-4.19.2.html
- https://access.redhat.com/security/cve/CVE-2023-5568 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2245174 issue-tracking x_refsource_REDHAT x_transferred
- https://bugzilla.samba.org/show_bug.cgi?id=15491 x_transferred
- https://security.netapp.com/advisory/ntap-20231124-0007/ x_transferred
- https://www.samba.org/samba/history/samba-4.19.2.html x_transferred
- https://access.redhat.com/security/cve/CVE-2023-5568 x_refsource_REDHAT vdb-entry
- RHBZ#2245174 issue-tracking x_refsource_REDHAT
- https://bugzilla.samba.org/show_bug.cgi?id=15491
- https://www.samba.org/samba/history/samba-4.19.2.html
- https://access.redhat.com/security/cve/CVE-2023-5568 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2245174 issue-tracking x_refsource_REDHAT x_transferred
- https://bugzilla.samba.org/show_bug.cgi?id=15491 x_transferred
- https://security.netapp.com/advisory/ntap-20231124-0007/ x_transferred
- https://www.samba.org/samba/history/samba-4.19.2.html x_transferred
- https://access.redhat.com/security/cve/CVE-2023-5568 x_refsource_REDHAT vdb-entry
- RHBZ#2245174 issue-tracking x_refsource_REDHAT
- https://bugzilla.samba.org/show_bug.cgi?id=15491
- https://www.samba.org/samba/history/samba-4.19.2.html
- https://access.redhat.com/security/cve/CVE-2023-5568 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2245174 issue-tracking x_refsource_REDHAT x_transferred
- https://bugzilla.samba.org/show_bug.cgi?id=15491 x_transferred
- https://security.netapp.com/advisory/ntap-20231124-0007/ x_transferred
- https://www.samba.org/samba/history/samba-4.19.2.html x_transferred
Affected products
samba
- ==4.19.2
Matching in nixpkgs
pkgs.samba4
Standard Windows interoperability suite of programs for Linux and Unix
-
nixos-unstable -
- nixpkgs-unstable 4.22.3
pkgs.sambaFull
Standard Windows interoperability suite of programs for Linux and Unix
-
nixos-unstable -
- nixpkgs-unstable 4.22.3
pkgs.samba4Full
Standard Windows interoperability suite of programs for Linux and Unix
-
nixos-unstable -
- nixpkgs-unstable 4.22.3
Package maintainers
-
@aneeshusa Aneesh Agrawal <aneeshusa@gmail.com>
-
@jbedo Justin Bedő <cu@cua0.org>