* SECURITY UPDATE: Unprivileged adding of CNAME record causing loop in AD
Internal DNS server
- debian/patches/CVE-2018-14629.patch: add CNAME loop prevention using
counter in source4/dns_server/dns_query.c.
- CVE-2018-14629
* SECURITY UPDATE: Double-free in Samba AD DC KDC with PKINIT
- debian/patches/CVE-2018-16841.patch: fix segfault on PKINIT with
mis-matching principal in source4/kdc/db-glue.c.
- CVE-2018-16841
* SECURITY UPDATE: NULL pointer de-reference in Samba AD DC LDAP server
- debian/patches/CVE-2018-16851.patch: check ret before manipulating
blob in source4/ldap_server/ldap_server.c.
- CVE-2018-16851
-- Marc Deslauriers <email address hidden> Fri, 16 Nov 2018 09:50:56 -0500
This bug was fixed in the package samba - 2:4.3.11+ dfsg-0ubuntu0. 14.04.19
--------------- 11+dfsg- 0ubuntu0. 14.04.19) trusty-security; urgency=medium
samba (2:4.3.
* SECURITY UPDATE: Unprivileged adding of CNAME record causing loop in AD patches/ CVE-2018- 14629.patch: add CNAME loop prevention using dns_server/ dns_query. c. patches/ CVE-2018- 16841.patch: fix segfault on PKINIT with kdc/db- glue.c. patches/ CVE-2018- 16851.patch: check ret before manipulating ldap_server/ ldap_server. c.
Internal DNS server
- debian/
counter in source4/
- CVE-2018-14629
* SECURITY UPDATE: Double-free in Samba AD DC KDC with PKINIT
- debian/
mis-matching principal in source4/
- CVE-2018-16841
* SECURITY UPDATE: NULL pointer de-reference in Samba AD DC LDAP server
- debian/
blob in source4/
- CVE-2018-16851
-- Marc Deslauriers <email address hidden> Fri, 16 Nov 2018 09:50:56 -0500