VulnerableCode Package Details - pkg:alpm/archlinux/samba@4.12.3-2

Search for packages

Vulnerability	Summary	Fixed by
VCID-bv3c-946s-aaaf Aliases: CVE-2020-10745	A flaw was found in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4 in the way it processed NetBios over TCP/IP. This flaw allows a remote attacker could to cause the Samba server to consume excessive CPU use, resulting in a denial of service. This highest threat from this vulnerability is to system availability.	4.12.6-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-pe83-8mqu-aaaf Aliases: CVE-2020-10760	A use-after-free flaw was found in all samba LDAP server versions before 4.10.17, before 4.11.11, before 4.12.4 used in a AC DC configuration. A Samba LDAP user could use this flaw to crash samba.	4.12.6-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-sxbn-732u-aaaa Aliases: CVE-2020-10730	A NULL pointer dereference, or possible use-after-free flaw was found in Samba AD LDAP server in versions before 4.10.17, before 4.11.11 and before 4.12.4. Although some versions of Samba shipped with Red Hat Enterprise Linux do not support Samba in AD mode, the affected code is shipped with the libldb package. This flaw allows an authenticated user to possibly trigger a use-after-free or NULL pointer dereference. The highest threat from this vulnerability is to system availability.	4.12.6-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-xqha-fd6g-aaaa Aliases: CVE-2020-14303	A flaw was found in the AD DC NBT server in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4. A samba user could send an empty UDP packet to cause the samba server to crash.	4.12.6-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-bv3c-946s-aaaf
Aliases:
CVE-2020-10745

A flaw was found in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4 in the way it processed NetBios over TCP/IP. This flaw allows a remote attacker could to cause the Samba server to consume excessive CPU use, resulting in a denial of service. This highest threat from this vulnerability is to system availability.

4.12.6-1
Affected by 1 other vulnerability.

VCID-pe83-8mqu-aaaf
Aliases:
CVE-2020-10760

A use-after-free flaw was found in all samba LDAP server versions before 4.10.17, before 4.11.11, before 4.12.4 used in a AC DC configuration. A Samba LDAP user could use this flaw to crash samba.

4.12.6-1
Affected by 1 other vulnerability.

VCID-sxbn-732u-aaaa
Aliases:
CVE-2020-10730

A NULL pointer dereference, or possible use-after-free flaw was found in Samba AD LDAP server in versions before 4.10.17, before 4.11.11 and before 4.12.4. Although some versions of Samba shipped with Red Hat Enterprise Linux do not support Samba in AD mode, the affected code is shipped with the libldb package. This flaw allows an authenticated user to possibly trigger a use-after-free or NULL pointer dereference. The highest threat from this vulnerability is to system availability.

4.12.6-1
Affected by 1 other vulnerability.

VCID-xqha-fd6g-aaaa
Aliases:
CVE-2020-14303

A flaw was found in the AD DC NBT server in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4. A samba user could send an empty UDP packet to cause the samba server to crash.

4.12.6-1
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:45:49.236119+00:00	Arch Linux Importer	Affected by	VCID-sxbn-732u-aaaa	https://security.archlinux.org/AVG-1202	36.0.0
2025-03-28T07:45:49.217443+00:00	Arch Linux Importer	Affected by	VCID-bv3c-946s-aaaf	https://security.archlinux.org/AVG-1202	36.0.0
2025-03-28T07:45:49.198710+00:00	Arch Linux Importer	Affected by	VCID-pe83-8mqu-aaaf	https://security.archlinux.org/AVG-1202	36.0.0
2025-03-28T07:45:49.180013+00:00	Arch Linux Importer	Affected by	VCID-xqha-fd6g-aaaa	https://security.archlinux.org/AVG-1202	36.0.0
2024-09-18T02:00:51.157026+00:00	Arch Linux Importer	Affected by	VCID-sxbn-732u-aaaa	https://security.archlinux.org/AVG-1202	34.0.1
2024-09-18T02:00:51.131371+00:00	Arch Linux Importer	Affected by	VCID-bv3c-946s-aaaf	https://security.archlinux.org/AVG-1202	34.0.1
2024-09-18T02:00:51.108302+00:00	Arch Linux Importer	Affected by	VCID-pe83-8mqu-aaaf	https://security.archlinux.org/AVG-1202	34.0.1
2024-09-18T02:00:51.083233+00:00	Arch Linux Importer	Affected by	VCID-xqha-fd6g-aaaa	https://security.archlinux.org/AVG-1202	34.0.1
2024-01-03T22:27:08.611910+00:00	Arch Linux Importer	Affected by	VCID-sxbn-732u-aaaa	https://security.archlinux.org/AVG-1202	34.0.0rc1
2024-01-03T22:27:08.592681+00:00	Arch Linux Importer	Affected by	VCID-bv3c-946s-aaaf	https://security.archlinux.org/AVG-1202	34.0.0rc1
2024-01-03T22:27:08.573331+00:00	Arch Linux Importer	Affected by	VCID-pe83-8mqu-aaaf	https://security.archlinux.org/AVG-1202	34.0.0rc1
2024-01-03T22:27:08.553925+00:00	Arch Linux Importer	Affected by	VCID-xqha-fd6g-aaaa	https://security.archlinux.org/AVG-1202	34.0.0rc1