CVE-2022-0336 log

Source
Severity Medium
Remote No
Type Access restriction bypass
Description
The Samba AD DC includes checks when adding service principals names (SPNs) to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account, such as one added when a computer is joined to a domain.
Group Package Affected Fixed Severity Status Ticket
AVG-2648 samba 4.15.4-1 4.15.5-1 Critical Fixed
References
https://www.samba.org/samba/security/CVE-2022-0336.html