CVE-2020-25721

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2020-25721
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-25721.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-25721
Downstream
Related
Published
2022-03-16T15:15:09Z
Modified
2025-10-14T17:49:19.711625Z
Severity
  • 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Kerberos acceptors need easy access to stable AD identifiers (eg objectSid). Samba as an AD DC now provides a way for Linux applications to obtain a reliable SID (and samAccountName) in issued tickets.

References

Affected packages

Git / github.com/samba-team/samba

Affected ranges

Type
GIT
Repo
https://github.com/samba-team/samba
Events
Introduced
3fe82c204f0d88cb6db50b7bd1f798b591a918f8
Fixed
db11778b57610e24324aa4342f89918f66157d71

Affected versions

ldb-2.*

ldb-2.2.1
ldb-2.2.2
ldb-2.2.3

samba-4.*

samba-4.13.0
samba-4.13.1
samba-4.13.10
samba-4.13.11
samba-4.13.12
samba-4.13.13
samba-4.13.2
samba-4.13.3
samba-4.13.4
samba-4.13.5
samba-4.13.6
samba-4.13.7
samba-4.13.8
samba-4.13.9