{"id":"MGASA-2023-0127","summary":"Updated ldb/samba packages fix security vulnerability","details":"Deletion of AD DC \"dnsHostname\" attribute by unprivileged authenticated\nusers (CVE-2023-0225)\nRead access controlled AD LDAP attributes (CVE-2023-0614)\nCleartext password sending by AD DC admin tool (CVE-2023-0922)\n","modified":"2026-03-25T17:59:18.842828Z","published":"2023-04-06T21:20:12Z","related":["CVE-2023-0225","CVE-2023-0614","CVE-2023-0922"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2023-0127.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=31735"},{"type":"REPORT","url":"https://www.samba.org/samba/security/CVE-2023-0225.html"},{"type":"REPORT","url":"https://www.samba.org/samba/security/CVE-2023-0922.html"},{"type":"REPORT","url":"https://www.samba.org/samba/security/CVE-2023-0614.html"},{"type":"REPORT","url":"https://lists.suse.com/pipermail/sle-security-updates/2023-March/014245.html"}],"affected":[{"package":{"name":"ldb","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/ldb?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.5.3-1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2023-0127.json"}},{"package":{"name":"samba","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/samba?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.16.10-1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2023-0127.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}