USN-4217-1 fixed several vulnerabilities in Samba. This update provides the corresponding update for Ubuntu 14.04 ESM.
Original advisory details:
Andreas Oster discovered that the Samba DNS management server incorrectly handled certain records. An authenticated attacker could possibly use this issue to crash Samba, resulting in a denial of service. (CVE-2019-14861)
Isaac Boukris discovered that Samba did not enforce the Kerberos DelegationNotAllowed feature restriction, contrary to expectations. (CVE-2019-14870)
{ "availability": "No subscription required", "binaries": [ { "libwbclient0": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "libwbclient-dev": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "samba-libs": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "samba-dsdb-modules": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "samba-common-bin": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "registry-tools": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "python-samba": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "samba": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "samba-doc": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "winbind": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "samba-vfs-modules": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "libsmbsharemodes0": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "libnss-winbind": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "samba-common": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "libpam-winbind": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "smbclient": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "samba-testsuite": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "samba-dev": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "libparse-pidl-perl": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "libpam-smbpass": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "libsmbsharemodes-dev": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "libsmbclient": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4", "libsmbclient-dev": "2:4.3.11+dfsg-0ubuntu0.14.04.20+esm4" } ] }