{"id":"USN-4244-1","summary":"samba vulnerabilities","details":"It was discovered that Samba did not automatically replicate ACLs set to\ninherit down a subtree on AD Directory, contrary to expectations. This\nissue was only addressed in Ubuntu 18.04 LTS, Ubuntu 19.04 and Ubuntu\n19.10. (CVE-2019-14902)\n\nRobert Święcki discovered that Samba incorrectly handled certain character\nconversions when the log level is set to 3 or above. In certain\nenvironments, a remote attacker could possibly use this issue to cause\nSamba to crash, resulting in a denial of service. (CVE-2019-14907)\n\nChristian Naumer discovered that Samba incorrectly handled DNS zone\nscavenging. This issue could possibly result in some incorrect data being\nwritten to the DB. This issue only applied to Ubuntu 19.04 and Ubuntu\n19.10. (CVE-2019-19344)\n","modified":"2026-04-24T09:17:31.796493348Z","published":"2020-01-21T12:59:17Z","related":["UBUNTU-CVE-2019-14902","UBUNTU-CVE-2019-14907"],"upstream":["CVE-2019-19344","UBUNTU-CVE-2019-19344"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-4244-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2019-19344"}],"affected":[{"package":{"name":"samba","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/samba@2:4.3.11+dfsg-0ubuntu0.16.04.25?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:4.3.11+dfsg-0ubuntu0.16.04.25"}]}],"versions":["2:4.1.17+dfsg-4ubuntu2","2:4.1.20+dfsg-1ubuntu1","2:4.1.20+dfsg-1ubuntu2","2:4.1.20+dfsg-1ubuntu3","2:4.1.20+dfsg-1ubuntu5","2:4.3.3+dfsg-1ubuntu1","2:4.3.3+dfsg-1ubuntu2","2:4.3.3+dfsg-1ubuntu3","2:4.3.6+dfsg-1ubuntu1","2:4.3.8+dfsg-0ubuntu1","2:4.3.9+dfsg-0ubuntu0.16.04.1","2:4.3.9+dfsg-0ubuntu0.16.04.2","2:4.3.9+dfsg-0ubuntu0.16.04.3","2:4.3.11+dfsg-0ubuntu0.16.04.1","2:4.3.11+dfsg-0ubuntu0.16.04.3","2:4.3.11+dfsg-0ubuntu0.16.04.5","2:4.3.11+dfsg-0ubuntu0.16.04.6","2:4.3.11+dfsg-0ubuntu0.16.04.7","2:4.3.11+dfsg-0ubuntu0.16.04.8","2:4.3.11+dfsg-0ubuntu0.16.04.9","2:4.3.11+dfsg-0ubuntu0.16.04.10","2:4.3.11+dfsg-0ubuntu0.16.04.11","2:4.3.11+dfsg-0ubuntu0.16.04.12","2:4.3.11+dfsg-0ubuntu0.16.04.13","2:4.3.11+dfsg-0ubuntu0.16.04.15","2:4.3.11+dfsg-0ubuntu0.16.04.16","2:4.3.11+dfsg-0ubuntu0.16.04.17","2:4.3.11+dfsg-0ubuntu0.16.04.18","2:4.3.11+dfsg-0ubuntu0.16.04.19","2:4.3.11+dfsg-0ubuntu0.16.04.20","2:4.3.11+dfsg-0ubuntu0.16.04.21","2:4.3.11+dfsg-0ubuntu0.16.04.23","2:4.3.11+dfsg-0ubuntu0.16.04.24"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"ctdb","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"libnss-winbind","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"libpam-winbind","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"libparse-pidl-perl","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"libsmbclient","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"libwbclient0","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"python-samba","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"registry-tools","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"samba","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"samba-common","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"samba-common-bin","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"samba-dsdb-modules","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"samba-libs","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"samba-testsuite","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"samba-vfs-modules","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"smbclient","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"},{"binary_name":"winbind","binary_version":"2:4.3.11+dfsg-0ubuntu0.16.04.25"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:16.04:LTS","cves":[]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4244-1.json"}},{"package":{"name":"samba","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/samba@2:4.7.6+dfsg~ubuntu-0ubuntu2.15?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"}]}],"versions":["2:4.6.7+dfsg-1ubuntu3","2:4.7.1+dfsg-1ubuntu1","2:4.7.3+dfsg-1ubuntu1","2:4.7.4+dfsg-1ubuntu1","2:4.7.6+dfsg~ubuntu-0ubuntu1","2:4.7.6+dfsg~ubuntu-0ubuntu2","2:4.7.6+dfsg~ubuntu-0ubuntu2.2","2:4.7.6+dfsg~ubuntu-0ubuntu2.4","2:4.7.6+dfsg~ubuntu-0ubuntu2.5","2:4.7.6+dfsg~ubuntu-0ubuntu2.6","2:4.7.6+dfsg~ubuntu-0ubuntu2.7","2:4.7.6+dfsg~ubuntu-0ubuntu2.9","2:4.7.6+dfsg~ubuntu-0ubuntu2.10","2:4.7.6+dfsg~ubuntu-0ubuntu2.11","2:4.7.6+dfsg~ubuntu-0ubuntu2.13","2:4.7.6+dfsg~ubuntu-0ubuntu2.14"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"ctdb","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"libnss-winbind","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"libpam-winbind","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"libparse-pidl-perl","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"libsmbclient","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"libwbclient0","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"python-samba","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"registry-tools","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"samba","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"samba-common","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"samba-common-bin","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"samba-dsdb-modules","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"samba-libs","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"samba-testsuite","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"samba-vfs-modules","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"smbclient","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"},{"binary_name":"winbind","binary_version":"2:4.7.6+dfsg~ubuntu-0ubuntu2.15"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:18.04:LTS","cves":[]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4244-1.json"}}],"schema_version":"1.7.5"}