Impact: Moderate Public Date: 2019-06-19 CWE: CWE-476 Bugzilla: 1711837: CVE-2019-12436 samba: NULL pointer dereference in Samba LDAP server leading to crash and Dos Samba 4.10.x before 4.10.5 has a NULL pointer dereference, leading to an AD DC LDAP server Denial of Service. This is related to an attacker using the paged search control. The attacker must have directory read access in order to attempt an exploit.
The MITRE CVE dictionary describes this issue as:
Find out more about CVE-2019-12436 from the MITRE CVE dictionary dictionary and NIST NVD.
This issue did not affect the version of samba as shipped with 'Red Hat Gluster Storage 3' as they did not include support for Active Directory Domain Controller.
NOTE: The following CVSS v3 metrics and score provided are preliminary and subject to review.
| CVSS3 Base Score | 6.5 |
|---|---|
| CVSS3 Base Metrics | CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
| Attack Vector | Network |
| Attack Complexity | Low |
| Privileges Required | Low |
| User Interaction | None |
| Scope | Unchanged |
| Confidentiality | None |
| Integrity Impact | None |
| Availability Impact | High |
| Platform | Package | State |
|---|---|---|
| Red Hat Virtualization 4 | redhat-virtualization-host | Not affected |
| Red Hat Gluster Storage 3 | samba | Not affected |
| Red Hat Enterprise Linux 8 | samba | Not affected |
| Red Hat Enterprise Linux 7 | samba | Not affected |
| Red Hat Enterprise Linux 6 | samba4 | Not affected |
| Red Hat Enterprise Linux 6 | samba | Not affected |
| Red Hat Enterprise Linux 5 | samba | Not affected |
Return to the default configuration by running 'samba' with -M standard, however this may consume more memory.
Vulmon