CVE-2019-10218 log

Source
Severity Medium
Remote Yes
Type Arbitrary filesystem access
Description
An issue has been found in Samba before 4.10.10 where a malicious server can craft a pathname containing separators and return this to client code, causing the client to use this access local pathnames for reading or writing instead of SMB network pathnames.
Group Package Affected Fixed Severity Status Ticket
AVG-1057 samba 4.10.8-2 4.10.10-1 Medium Fixed
Date Advisory Group Package Severity Description
03 Nov 2019 ASA-201911-6 AVG-1057 samba Medium multiple issues
References
https://www.samba.org/samba/security/CVE-2019-10218.html
https://www.samba.org/samba/ftp/patches/security/samba-4.10.9-security-2019-10-29.patch