CVE-2020-25719 log
Source |
|
Severity | Medium |
Remote | Yes |
Type | Privilege escalation |
Description | A security issue has been found in Samba versions 4.0.0 to 4.15.1. The Samba AD DC, could become confused about the user a ticket represents if it did not strictly require a Kerberos PAC and always use the SIDs found within. The result could include total domain compromise. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-2538 | samba | 4.15.1-1 | 4.15.2-1 | Medium | Fixed |
References |
---|
https://www.samba.org/samba/security/CVE-2020-25719.html https://www.samba.org/samba/ftp/patches/security/samba-4.15.1-security-2021-11-09.patch |