CVE-2019-10218 log
Source |
|
Severity | Medium |
Remote | Yes |
Type | Arbitrary filesystem access |
Description | An issue has been found in Samba before 4.10.10 where a malicious server can craft a pathname containing separators and return this to client code, causing the client to use this access local pathnames for reading or writing instead of SMB network pathnames. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-1057 | samba | 4.10.8-2 | 4.10.10-1 | Medium | Fixed |
Date | Advisory | Group | Package | Severity | Type |
---|---|---|---|---|---|
03 Nov 2019 | ASA-201911-6 | AVG-1057 | samba | Medium | multiple issues |
References |
---|
https://www.samba.org/samba/security/CVE-2019-10218.html https://www.samba.org/samba/ftp/patches/security/samba-4.10.9-security-2019-10-29.patch |