Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2018-16852 - log back

CVE-2018-16852 created at 25 Sep 2019 19:31:40

Severity

+

Medium

Remote

+

Remote

Type

+	Denial of service

Description

+	A NULL pointer de-reference issue has been found in samba from 4.9.0 up to and including 4.9.2, where a user able to create or modify dnsZone objects can crash the Samba AD DC's DNS management RPC server, DNS server or BIND9 when using Samba's DLZ plugin

References

+	https://www.samba.org/samba/security/CVE-2018-16852.html
+	https://bugzilla.samba.org/show_bug.cgi?id=13669
+	https://github.com/samba-team/samba/commit/05f867db81f118215445f2c49eda4b9c3451d14a
+	https://github.com/samba-team/samba/commit/c78ca8b9b48a19e71f4d6ddd2e300f282fb0b247

Notes