CVE-2020-25721

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2020-25721
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-25721.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-25721
Downstream
Related
Published
2022-03-16T15:15:09.813Z
Modified
2026-02-07T05:12:58.947557Z
Severity
  • 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Kerberos acceptors need easy access to stable AD identifiers (eg objectSid). Samba as an AD DC now provides a way for Linux applications to obtain a reliable SID (and samAccountName) in issued tickets.

References

Affected packages

Git / github.com/samba-team/samba

Affected ranges

Type
GIT
Repo
https://github.com/samba-team/samba
Events
Introduced
3fe82c204f0d88cb6db50b7bd1f798b591a918f8
Fixed
72d49f598976c7b8ab26523150b2c1a027b656a7
Introduced
9b49519cae3e967af9ea48dc5fcfb6c145e31db4
Fixed
9312b1832e5a808a63fc7f9e7d6e70348cc9eb86
Introduced
74b591b70639edf85f6d6382f3b9a6bfc616791f
Fixed
ac8c226ed9d8c067f6053c6f7f8f6457b86c2f52

Affected versions

ldb-2.*
ldb-2.2.1
ldb-2.2.2
ldb-2.2.3
ldb-2.3.0
ldb-2.3.1
ldb-2.3.2
samba-4.*
samba-4.13.0
samba-4.13.1
samba-4.13.10
samba-4.13.11
samba-4.13.12
samba-4.13.13
samba-4.13.14
samba-4.13.15
samba-4.13.16
samba-4.13.17
samba-4.13.2
samba-4.13.3
samba-4.13.4
samba-4.13.5
samba-4.13.6
samba-4.13.7
samba-4.13.8
samba-4.13.9
samba-4.14.0
samba-4.14.1
samba-4.14.2
samba-4.14.3
samba-4.14.4
samba-4.14.5
samba-4.14.6
samba-4.14.7
samba-4.14.8
samba-4.14.9

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-25721.json"