CVE-2018-1057 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Critical
Remote	Yes
Type	Access restriction bypass
Description	On a Samba 4 AD DC any authenticated user can change other users' passwords over LDAP, including the passwords of administrative users and service accounts.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-651	samba	4.7.5-1	4.7.6-1	Critical	Fixed

Date	Advisory	Group	Package	Severity	Type
13 Mar 2018	ASA-201803-10	AVG-651	samba	Critical	multiple issues

References
https://www.samba.org/samba/security/CVE-2018-1057.html https://wiki.samba.org/index.php/CVE-2018-1057 https://github.com/samba-team/samba/commit/50e7788603b97104fe116a07ab14a1d1148f4405 https://github.com/samba-team/samba/commit/c80456855197f9fe9ef497a7fc94504c28445343 https://github.com/samba-team/samba/commit/ab7dc210e9aedc1222055822ff296e4a67cfb27b https://github.com/samba-team/samba/commit/407a34c73fcd666c22776bbc4aa56d02c0683463 https://github.com/samba-team/samba/commit/3e6621fe58014f19477633b1c0b54288550f0e87 https://github.com/samba-team/samba/commit/9dd7dd9ebba8d449feea66695fab3cbbb22d00e8 https://github.com/samba-team/samba/commit/766ab4c52b06532f2dd8801ccf5d4aadf07a098e https://github.com/samba-team/samba/commit/0e15ce12e1e9733f1e8eb13e77cbcdd0aea29f29 https://github.com/samba-team/samba/commit/39e689aa703536330083bfc4d58d15a2521e0f95 https://github.com/samba-team/samba/commit/2fea9ee701fed0417d8f681238663b7b00c451f8 https://github.com/samba-team/samba/commit/c653e51a3d991e0e08327186881b324b85106f0d https://github.com/samba-team/samba/commit/b23bf04caeb196da9515addbcdf17db0723ee553 https://github.com/samba-team/samba/commit/fbd16473ecf073f86e36f9e29a80151272661dce

References

https://www.samba.org/samba/security/CVE-2018-1057.html
https://wiki.samba.org/index.php/CVE-2018-1057
https://github.com/samba-team/samba/commit/50e7788603b97104fe116a07ab14a1d1148f4405
https://github.com/samba-team/samba/commit/c80456855197f9fe9ef497a7fc94504c28445343
https://github.com/samba-team/samba/commit/ab7dc210e9aedc1222055822ff296e4a67cfb27b
https://github.com/samba-team/samba/commit/407a34c73fcd666c22776bbc4aa56d02c0683463
https://github.com/samba-team/samba/commit/3e6621fe58014f19477633b1c0b54288550f0e87
https://github.com/samba-team/samba/commit/9dd7dd9ebba8d449feea66695fab3cbbb22d00e8
https://github.com/samba-team/samba/commit/766ab4c52b06532f2dd8801ccf5d4aadf07a098e
https://github.com/samba-team/samba/commit/0e15ce12e1e9733f1e8eb13e77cbcdd0aea29f29
https://github.com/samba-team/samba/commit/39e689aa703536330083bfc4d58d15a2521e0f95
https://github.com/samba-team/samba/commit/2fea9ee701fed0417d8f681238663b7b00c451f8
https://github.com/samba-team/samba/commit/c653e51a3d991e0e08327186881b324b85106f0d
https://github.com/samba-team/samba/commit/b23bf04caeb196da9515addbcdf17db0723ee553
https://github.com/samba-team/samba/commit/fbd16473ecf073f86e36f9e29a80151272661dce