CVE-2023-0614

Source
https://nvd.nist.gov/vuln/detail/CVE-2023-0614
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-0614.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-0614
Related
Published
2023-04-03T23:15:06Z
Modified
2024-09-18T03:24:25.943991Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC.

References

Affected packages

Debian:11 / samba

Package

Name
samba
Purl
pkg:deb/debian/samba?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2:4.*

2:4.13.5+dfsg-2
2:4.13.13+dfsg-1~deb11u1
2:4.13.13+dfsg-1~deb11u2
2:4.13.13+dfsg-1~deb11u3
2:4.13.13+dfsg-1~deb11u4
2:4.13.13+dfsg-1~deb11u5
2:4.13.13+dfsg-1~deb11u6
2:4.13.13+dfsg-1
2:4.13.14+dfsg-1
2:4.16.0+dfsg-1
2:4.16.0+dfsg-2
2:4.16.0+dfsg-3
2:4.16.0+dfsg-4
2:4.16.0+dfsg-5
2:4.16.0+dfsg-6
2:4.16.0+dfsg-7
2:4.16.0+dfsg-7+hurd.1
2:4.16.1+dfsg-1
2:4.16.1+dfsg-2
2:4.16.1+dfsg-3~bpo11+1
2:4.16.1+dfsg-3~bpo11+2
2:4.16.1+dfsg-3~bpo11+3
2:4.16.1+dfsg-3
2:4.16.1+dfsg-4~bpo11+1
2:4.16.1+dfsg-4
2:4.16.1+dfsg-5
2:4.16.1+dfsg-6
2:4.16.1+dfsg-6+x32
2:4.16.1+dfsg-7
2:4.16.1+dfsg-8~bpo11+1
2:4.16.1+dfsg-8
2:4.16.2+dfsg-1
2:4.16.3+dfsg-1
2:4.16.4+dfsg-1
2:4.16.4+dfsg-2~bpo11+1
2:4.16.4+dfsg-2
2:4.16.4+dfsg-2+hurd.1
2:4.16.5+dfsg-1~bpo11+1
2:4.16.5+dfsg-1
2:4.16.5+dfsg-2
2:4.16.6+dfsg-1
2:4.16.6+dfsg-2
2:4.16.6+dfsg-3
2:4.16.6+dfsg-4
2:4.16.6+dfsg-5~bpo11+1
2:4.16.6+dfsg-5
2:4.16.6+dfsg-6
2:4.17.0+dfsg-1
2:4.17.0+dfsg-1+ports
2:4.17.0+dfsg-2
2:4.17.1+dfsg-1
2:4.17.2+dfsg-1
2:4.17.2+dfsg-2
2:4.17.2+dfsg-3
2:4.17.2+dfsg-4
2:4.17.2+dfsg-5
2:4.17.2+dfsg-6
2:4.17.2+dfsg-7
2:4.17.2+dfsg-8
2:4.17.2+dfsg-8+hurd.1
2:4.17.2+dfsg-9
2:4.17.3+dfsg-1~bpo11+1
2:4.17.3+dfsg-1
2:4.17.3+dfsg-2~bpo11+1
2:4.17.3+dfsg-2
2:4.17.3+dfsg-3~bpo11+1
2:4.17.3+dfsg-3
2:4.17.3+dfsg-4
2:4.17.4+dfsg-1
2:4.17.4+dfsg-2~bpo11+1
2:4.17.4+dfsg-2
2:4.17.4+dfsg-3~bpo11+1
2:4.17.4+dfsg-3
2:4.17.5+dfsg-1~bpo11+1
2:4.17.5+dfsg-1
2:4.17.5+dfsg-2
2:4.17.6+dfsg-1~bpo11+1
2:4.17.6+dfsg-1
2:4.17.7+dfsg-1~bpo11+1
2:4.17.7+dfsg-1
2:4.17.8+dfsg-1~bpo11+1
2:4.17.8+dfsg-1
2:4.17.8+dfsg-2
2:4.18.0~rc1+dfsg-1exp
2:4.18.0~rc2+dfsg-1
2:4.18.0~rc3+dfsg-1
2:4.18.0~rc4+dfsg-1
2:4.18.0+dfsg-1~exp1
2:4.18.1+dfsg-1~exp1
2:4.18.2+dfsg-1
2:4.18.3+dfsg-1
2:4.18.3+dfsg-2
2:4.18.3+dfsg-3
2:4.18.4+dfsg-1
2:4.18.4+dfsg-2~bpo12+1
2:4.18.4+dfsg-2
2:4.18.5+dfsg-1
2:4.18.5+dfsg-2~bpo12+1
2:4.18.5+dfsg-2
2:4.18.6+dfsg-1~bpo12+1
2:4.18.6+dfsg-1
2:4.18.8+dfsg-1~bpo12+1
2:4.19.0~rc1+dfsg-1
2:4.19.0~rc1+dfsg-2
2:4.19.0~rc1+dfsg-3
2:4.19.0~rc2+dfsg-1
2:4.19.0~rc4+dfsg-1
2:4.19.0~rc4+dfsg-2
2:4.19.0+dfsg-1
2:4.19.1+dfsg-1
2:4.19.1+dfsg-2
2:4.19.1+dfsg-3
2:4.19.1+dfsg-4
2:4.19.2+dfsg-1
2:4.19.3+dfsg-1~bpo12+1
2:4.19.3+dfsg-1
2:4.19.3+dfsg-2
2:4.19.4+dfsg-1
2:4.19.4+dfsg-2~bpo12+1
2:4.19.4+dfsg-2
2:4.19.4+dfsg-3~bpo12+1
2:4.19.4+dfsg-3
2:4.19.5+dfsg-1
2:4.19.5+dfsg-2
2:4.19.5+dfsg-3
2:4.19.5+dfsg-4~bpo12+1
2:4.19.5+dfsg-4
2:4.19.5+dfsg-5
2:4.19.6+dfsg-1
2:4.19.6+dfsg-2
2:4.19.6+dfsg-3~bpo12+1
2:4.19.6+dfsg-3
2:4.20.0~rc1+dfsg-1
2:4.20.0~rc2+dfsg-1
2:4.20.0~rc2+dfsg-2
2:4.20.0~rc2+dfsg-3
2:4.20.0+dfsg-1~exp1
2:4.20.0+dfsg-1~exp2
2:4.20.1+dfsg-1
2:4.20.1+dfsg-2
2:4.20.1+dfsg-3
2:4.20.1+dfsg-4~bpo12+1
2:4.20.1+dfsg-4
2:4.20.1+dfsg-5
2:4.20.2+dfsg-1
2:4.20.2+dfsg-2~bpo12+1
2:4.20.2+dfsg-2~bpo12+2
2:4.20.2+dfsg-2
2:4.20.2+dfsg-3
2:4.20.2+dfsg-4
2:4.20.2+dfsg-5~bpo12+1
2:4.20.2+dfsg-5
2:4.20.2+dfsg-6~bpo12+1
2:4.20.2+dfsg-6
2:4.20.2+dfsg-7
2:4.20.2+dfsg-8
2:4.20.2+dfsg-9~exp1
2:4.20.2+dfsg-9~exp2
2:4.20.2+dfsg-9
2:4.20.2+dfsg-10
2:4.20.4+dfsg-1~bpo12+1
2:4.21.0~rc1+dfsg-1
2:4.21.0~rc1+really4.20.2+dfsg-11
2:4.21.0~rc1+really4.20.2+dfsg-11r
2:4.21.0~rc1+really4.20.3+dfsg-1
2:4.21.0~rc1+really4.20.4+dfsg-1
2:4.21.0~rc2+dfsg-1
2:4.21.0+dfsg-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / samba

Package

Name
samba
Purl
pkg:deb/debian/samba?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:4.17.7+dfsg-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / samba

Package

Name
samba
Purl
pkg:deb/debian/samba?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:4.17.7+dfsg-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/samba-team/samba

Affected ranges

Type
GIT
Repo
https://github.com/samba-team/samba
Events