CVE-2019-12436

Priority
Description
Samba 4.10.x before 4.10.5 has a NULL pointer dereference, leading to an AD
DC LDAP server Denial of Service. This is related to an attacker using the
paged search control. The attacker must have directory read access in order
to attempt an exploit.
Assigned-to
mdeslaur
Notes
mdeslaur4.10 only
Package
Source: samba (LP Ubuntu Debian)
Upstream:released (4.9.10)
Ubuntu 12.04 ESM (Precise Pangolin):not-affected
Ubuntu 14.04 ESM (Trusty Tahr):not-affected
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (2:4.3.11+dfsg-0ubuntu0.16.04.21)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (2:4.7.6+dfsg~ubuntu-0ubuntu2.11)
More Information

Updated: 2020-07-28 20:06:12 UTC (commit d26b6ca9f5b3adb89bb036ce73ae7dab894935ec)