CVE-2020-10745

2020-07-07 16:15:00 2020-09-01 20:15:00

A flaw was found in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4 in the way it processed NetBios over TCP/IP. This flaw allows a remote attacker could to cause the Samba server to consume excessive CPU use, resulting in a denial of service. This highest threat from this vulnerability is to system availability.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

NONE

Integrity

NONE

Availability

COMPLETE

Opensuse Leap 15.2 * * * (not an official CPE) Opensuse Leap 15.1 * * * (not an official CPE) Fedoraproject Fedora 31 * * * (not an official CPE)

Samba Samba * * * * (not an official CPE) Samba Samba * * * * (not an official CPE) Samba Samba * * * * (not an official CPE)

Opensuse - Leap Samba - Samba Fedoraproject - Fedora

Advisory	Patch	Confirmed	Link
			http://lists.opensuse.org/opensuse-security-announce/202...
			https://lists.fedoraproject.org/archives/list/package-an...
			https://security.gentoo.org/glsa/202007-15
			https://bugzilla.redhat.com/show_bug.cgi?id=1849491;
			http://lists.opensuse.org/opensuse-security-announce/202...
			http://lists.opensuse.org/opensuse-security-announce/202...
			https://www.samba.org/samba/security/CVE-2020-10745.html