CVE-2019-14907

Published: Jan 21, 2020Modified: Jan 14, 2025

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an issue where if it is set with "log level = 3" (or above) then the string obtained from the client, after a failed character conversion, is printed. Such strings can be provided during the NTLMSSP authentication exchange. In the Samba AD DC in particular, this may cause a long-lived process(such as the RPC server) to terminate. (In the file server case, the most likely target, smbd, operates as process-per-client and so a crash there is harmless).

Affected (17)

Products: Fedoraproject: Fedora · Samba: Samba · Redhat: Enterprise Linux, Storage · +3 more

Show all products

Fedoraproject: Fedora · Samba: Samba · Redhat: Enterprise Linux, Storage · Canonical: Ubuntu Linux · Synology: Directory Server, Diskstation Manager, Router Manager, Skynas · Debian: Debian Linux

1 product

1 product

2 products

Enterprise Linux

1 product

4 products

Directory Server

Diskstation Manager

1 product

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 30
Fedoraproject Fedora	Version 31
Samba Samba	From 4.10.0 to 4.10.12
Samba Samba	From 4.11.0 to 4.11.5
Samba Samba	From 4.9.0 to 4.9.18

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 7.0
Redhat Enterprise Linux	Version 8.0
Redhat Storage	Version 3.0

Configuration C

4 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 16.04
Canonical Ubuntu Linux	Version 18.04
Canonical Ubuntu Linux	Version 19.04
Canonical Ubuntu Linux	Version 19.10

Configuration D

4 vulnerable

Vulnerable Software	Affected Versions
Synology Directory Server	All versions
Synology Diskstation Manager	Version 6.2
Synology Router Manager	Version 1.2
Synology Skynas	All versions

Configuration E

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 9.0

Related CWEs

Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

References (22)

http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00055.html

Source: secalert@redhat.com

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14907

Source: secalert@redhat.com

Issue TrackingThird Party Advisory

https://lists.debian.org/debian-lts-announce/2021/05/msg00023.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

https://lists.debian.org/debian-lts-announce/2023/09/msg00013.html

Source: secalert@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ACZVNMIFQGGXNJPMHAVBN3H2U65FXQY/

Source: secalert@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GQ6U65I2K23YJC4FESW477WL55TU3PPT/

Source: secalert@redhat.com

https://security.gentoo.org/glsa/202003-52

Source: secalert@redhat.com

Third Party Advisory

https://security.netapp.com/advisory/ntap-20200122-0001/

Source: secalert@redhat.com

Third Party Advisory

https://usn.ubuntu.com/4244-1/

Source: secalert@redhat.com

Third Party Advisory

https://www.samba.org/samba/security/CVE-2019-14907.html

Source: secalert@redhat.com

Vendor Advisory

https://www.synology.com/security/advisory/Synology_SA_20_01

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00055.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14907

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingThird Party Advisory

https://lists.debian.org/debian-lts-announce/2021/05/msg00023.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://lists.debian.org/debian-lts-announce/2023/09/msg00013.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ACZVNMIFQGGXNJPMHAVBN3H2U65FXQY/

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GQ6U65I2K23YJC4FESW477WL55TU3PPT/

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.gentoo.org/glsa/202003-52

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://security.netapp.com/advisory/ntap-20200122-0001/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/4244-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.samba.org/samba/security/CVE-2019-14907.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://www.synology.com/security/advisory/Synology_SA_20_01

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.