CVE-2020-14303

A flaw was found in the AD DC NBT server in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4. A samba user could send an empty UDP packet to cause the samba server to crash.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*

Configuration 4 (hide)

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Configuration 5 (hide)

OR cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*

History

28 Apr 2022, 18:57

Type Values Removed Values Added
References (SUSE) http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00002.html - (SUSE) http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00002.html - Mailing List, Third Party Advisory
References (GENTOO) https://security.gentoo.org/glsa/202007-15 - (GENTOO) https://security.gentoo.org/glsa/202007-15 - Third Party Advisory
References (MLIST) https://lists.debian.org/debian-lts-announce/2020/11/msg00041.html - (MLIST) https://lists.debian.org/debian-lts-announce/2020/11/msg00041.html - Mailing List, Third Party Advisory
References (UBUNTU) https://usn.ubuntu.com/4454-2/ - (UBUNTU) https://usn.ubuntu.com/4454-2/ - Third Party Advisory
References (UBUNTU) https://usn.ubuntu.com/4454-1/ - (UBUNTU) https://usn.ubuntu.com/4454-1/ - Third Party Advisory
CPE cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
CWE CWE-20 CWE-834

Information

Published : 2020-07-06 18:15

Updated : 2024-02-04 21:00


NVD link : CVE-2020-14303

Mitre link : CVE-2020-14303

CVE.ORG link : CVE-2020-14303


JSON object : View

Products Affected

debian

  • debian_linux

samba

  • samba

canonical

  • ubuntu_linux

opensuse

  • leap

fedoraproject

  • fedora
CWE
CWE-834

Excessive Iteration