CVE-2018-16852 - log back

CVE-2018-16852 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Denial of service
Description
+ A NULL pointer de-reference issue has been found in samba from 4.9.0 up to and including 4.9.2, where a user able to create or modify dnsZone objects can crash the Samba AD DC's DNS management RPC server, DNS server or BIND9 when using Samba's DLZ plugin
References
+ https://www.samba.org/samba/security/CVE-2018-16852.html
+ https://bugzilla.samba.org/show_bug.cgi?id=13669
+ https://github.com/samba-team/samba/commit/05f867db81f118215445f2c49eda4b9c3451d14a
+ https://github.com/samba-team/samba/commit/c78ca8b9b48a19e71f4d6ddd2e300f282fb0b247
Notes