CVE-2025-0620 log
| Source |
|
| Severity | Low |
| Remote | Yes |
| Type | Access restriction bypass |
| Description | When using Kerberos authentication with SMB, smbd doesn't pick up group membership changes when re-authenticating an expired SMB session. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-2892 | samba | 4.22.1-1 | 4.22.2-1 | Low | Fixed |
| Date | Advisory | Group | Package | Severity | Type |
|---|---|---|---|---|---|
| 06 Jun 2025 | ASA-202506-3 | AVG-2892 | samba | Low | access restriction bypass |
| References |
|---|
https://www.samba.org/samba/security/CVE-2025-0620.html https://bugzilla.samba.org/show_bug.cgi?id=15707 https://nvd.nist.gov/vuln/detail/CVE-2025-0620 |