UBUNTU-CVE-2018-10918

See a problem?
Please try reporting it to the source first.
Source
https://ubuntu.com/security/CVE-2018-10918
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2018/UBUNTU-CVE-2018-10918.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2018-10918
Upstream
Downstream
Related
Published
2018-08-14T00:00:00Z
Modified
2025-09-08T16:44:52Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
  • 5.2 (Medium) CVSS_V3 - CVSS:3.0/AV:A/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
  • Ubuntu - medium
Summary
[none]
Details

A null pointer dereference flaw was found in the way samba checked database outputs from the LDB database layer. An authenticated attacker could use this flaw to crash a samba server in an Active Directory Domain Controller configuration. Samba versions before 4.7.9 and 4.8.4 are vulnerable.

References

Affected packages

Ubuntu:18.04:LTS / samba

Package

Name
samba
Purl
pkg:deb/ubuntu/samba@2:4.7.6+dfsg~ubuntu-0ubuntu2.2?arch=source&distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:4.7.6+dfsg~ubuntu-0ubuntu2.2

Affected versions

2:4.*

2:4.6.7+dfsg-1ubuntu3
2:4.7.1+dfsg-1ubuntu1
2:4.7.3+dfsg-1ubuntu1
2:4.7.4+dfsg-1ubuntu1
2:4.7.6+dfsg~ubuntu-0ubuntu1
2:4.7.6+dfsg~ubuntu-0ubuntu2

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "ctdb",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "libnss-winbind",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "libpam-winbind",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "libparse-pidl-perl",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "libsmbclient",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "libsmbclient-dev",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "libwbclient-dev",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "libwbclient0",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "python-samba",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "registry-tools",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "samba",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "samba-common",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "samba-common-bin",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "samba-dev",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "samba-dsdb-modules",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "samba-libs",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "samba-testsuite",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "samba-vfs-modules",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "smbclient",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        },
        {
            "binary_name": "winbind",
            "binary_version": "2:4.7.6+dfsg~ubuntu-0ubuntu2.2"
        }
    ]
}