Nixpkgs security tracker
NIXPKGS-2025-0013
published on
Permalink
CVE-2025-10230
10.0 CRITICAL
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Network (N)
- Attack Complexity (AC): Low (L)
- Privileges Required (PR): None (N)
- User Interaction (UI): None (N)
- Scope (S): Changed (C)
- Confidentiality (C): High (H)
- Integrity (I): High (H)
- Availability (A): High (H)
- Modified Attack Vector (MAV): Network (N)
- Modified Attack Complexity (MAC): Low (L)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): None (N)
- Modified Confidentiality (MC): High (H)
- Modified Scope (MS): Changed (C)
- Modified Integrity (MI): High (H)
- Modified Availability (MA): High (H)
by @mweinelt Activity log
- Created suggestion
- @mweinelt ignored package sambamba
- @mweinelt accepted
- @mweinelt published on GitHub
Samba: command injection in wins server hook script
A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without proper validation or escaping. Unsanitized NetBIOS name data from WINS registration packets are inserted into a shell command and executed by the Samba Active Directory Domain Controller’s wins hook, allowing an unauthenticated network attacker to achieve remote command execution as the Samba process.
References
Affected products
rhcos
samba
- <4.21.9
- <4.21.5
- <4.23.2
samba4
Matching in nixpkgs
pkgs.samba
Standard Windows interoperability suite of programs for Linux and Unix
pkgs.samba4
Standard Windows interoperability suite of programs for Linux and Unix
pkgs.sambaFull
Standard Windows interoperability suite of programs for Linux and Unix
pkgs.samba4Full
Standard Windows interoperability suite of programs for Linux and Unix
Package maintainers
-
@aneeshusa Aneesh Agrawal <aneeshusa@gmail.com>