[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-OPENSUSE-SU-2021:3647-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":30,"duplicates":31,"related":32,"reserved_at":9,"published_at":41,"modified_at":42,"state":9,"summary":43,"references_raw":45,"kevs":118,"epss":9,"epss_history":119,"metrics":120,"affected":121},"OPENSUSE-SU-2021:3647-1","Security update for samba and ldb\n\nThis update for samba and ldb fixes the following issues:\n\n- CVE-2020-25718: Fixed that an RODC can issue (forge) administrator tickets to other servers (bsc#1192246).\n- CVE-2021-3738: Fixed crash in dsdb stack (bsc#1192215).\n- CVE-2016-2124: Fixed not to fallback to non spnego authentication if we require kerberos (bsc#1014440).\n- CVE-2020-25717: Fixed privilege escalation inside an AD Domain where a user could become root on domain members (bsc#1192284).\n- CVE-2020-25719: Fixed AD DC Username based races when no PAC is given (bsc#1192247).\n- CVE-2020-25722: Fixed AD DC UPN vs samAccountName not checked (top-level bug for AD DC validation issues) (bsc#1192283).\n- CVE-2021-23192: Fixed dcerpc requests to don't check all fragments against the first auth_state (bsc#1192214).\n- CVE-2020-25721: Fixed fill in the new HAS_SAM_NAME_AND_SID values (bsc#1192505).\n\nSamba was updated to 4.13.13\n\n* rodc_rwdc test flaps;(bso#14868).\n* Backport bronze bit fixes, tests, and selftest improvements;\n  (bso#14881).\n* Provide a fix for MS CVE-2020-17049 in Samba [SECURITY]\n  'Bronze bit' S4U2Proxy Constrained Delegation bypass in Samba\n  with embedded Heimdal;(bso#14642).\n* Python ldb.msg_diff() memory handling failure;(bso#14836).\n* 'in' operator on ldb.Message is case sensitive;(bso#14845).\n* Fix Samba support for UF_NO_AUTH_DATA_REQUIRED;(bso#14871).\n* Allow special chars like '@' in samAccountName when generating\n  the salt;(bso#14874).\n* Fix transit path validation;(bso#12998).\n* Prepare to operate with MIT krb5 >= 1.20;(bso#14870).\n* rpcclient NetFileEnum and net rpc file both cause lock order\n  violation: brlock.tdb, share_entries.tdb;(bso#14645).\n* Python ldb.msg_diff() memory handling failure;(bso#14836).\n* Release LDB 2.3.1 for Samba 4.14.9;(bso#14848).\n\nSamba was updated to 4.13.12:\n\n* Address a signifcant performance regression in database access\n  in the AD DC since Samba 4.12;(bso#14806).\n* Fix performance regression in lsa_LookupSids3/LookupNames4\n  since Samba 4.9 by using an explicit database handle cache;\n  (bso#14807).\n* An unuthenticated user can crash the AD DC KDC by omitting the\n  server name in a TGS-REQ;(bso#14817).\n* Address flapping samba_tool_drs_showrepl test;(bso#14818).\n* Address flapping dsdb_schema_attributes test;(bso#14819).\n* An unuthenticated user can crash the AD DC KDC by omitting the\n  server name in a TGS-REQ;(bso#14817).\n* Fix CTDB flag/status update race conditions(bso#14784).\n\nSamba was updated to 4.13.11:\n\n* smbd: panic on force-close share during offload write; (bso#14769).\n* Fix returned attributes on fake quota file handle and avoid\n  hitting the VFS;(bso#14731).\n* smbd: 'deadtime' parameter doesn't work anymore;(bso#14783).\n* net conf list crashes when run as normal user;(bso#14787).\n* Work around special SMB2 READ response behavior of NetApp Ontap\n  7.3.7;(bso#14607).\n* Start the SMB encryption as soon as possible;(bso#14793).\n* Winbind should not start if the socket path for the privileged\n  pipe is too long;(bso#14792).\n\nldb was updated to 2.2.2:\n\n+ CVE-2020-25718: samba: An RODC can issue (forge) administrator tickets to other servers; (bsc#1192246); (bso#14558)\n+ CVE-2021-3738: samba: crash in dsdb stack; (bsc#1192215);(bso#14848)\n\nRelease ldb 2.2.2\n\n+ Corrected python behaviour for 'in' for LDAP attributes contained as part of ldb.Message;(bso#14845).\n+ Fix memory handling in ldb.msg_diff Corrected python docstrings;(bso#14836)\n+ Backport bronze bit fixes, tests, and selftest improvements; (bso#14881).\n",null,[],[],[],[14,16,18,20,22,24,26,28],{"_key":15},"CVE-2016-2124",{"_key":17},"CVE-2020-25717",{"_key":19},"CVE-2020-25718",{"_key":21},"CVE-2020-25719",{"_key":23},"CVE-2020-25721",{"_key":25},"CVE-2020-25722",{"_key":27},"CVE-2021-23192",{"_key":29},"CVE-2021-3738",[],[],[33,34,35,36,37,38,39,40],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},"2021-11-10T16:34:22Z","2025-05-07T18:09:18.402649Z",{"cisa_kev":44,"cisa_ransomware":44,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[46,52,57,61,65,69,73,77,81,85,90,94,98,102,106,110,114],{"url":47,"sources":48,"tags":50},"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/36K5HNX67LYX5XOVQRL3MSIC5YSJ5M5W/",[49],"osv_opensuse",[51],"Advisory",{"url":53,"sources":54,"tags":55},"https://bugzilla.suse.com/1014440",[49],[56],"REPORT",{"url":58,"sources":59,"tags":60},"https://bugzilla.suse.com/1192214",[49],[56],{"url":62,"sources":63,"tags":64},"https://bugzilla.suse.com/1192215",[49],[56],{"url":66,"sources":67,"tags":68},"https://bugzilla.suse.com/1192246",[49],[56],{"url":70,"sources":71,"tags":72},"https://bugzilla.suse.com/1192247",[49],[56],{"url":74,"sources":75,"tags":76},"https://bugzilla.suse.com/1192283",[49],[56],{"url":78,"sources":79,"tags":80},"https://bugzilla.suse.com/1192284",[49],[56],{"url":82,"sources":83,"tags":84},"https://bugzilla.suse.com/1192505",[49],[56],{"url":86,"sources":87,"tags":88},"https://www.suse.com/security/cve/CVE-2016-2124",[49],[89],"WEB",{"url":91,"sources":92,"tags":93},"https://www.suse.com/security/cve/CVE-2020-25717",[49],[89],{"url":95,"sources":96,"tags":97},"https://www.suse.com/security/cve/CVE-2020-25718",[49],[89],{"url":99,"sources":100,"tags":101},"https://www.suse.com/security/cve/CVE-2020-25719",[49],[89],{"url":103,"sources":104,"tags":105},"https://www.suse.com/security/cve/CVE-2020-25721",[49],[89],{"url":107,"sources":108,"tags":109},"https://www.suse.com/security/cve/CVE-2020-25722",[49],[89],{"url":111,"sources":112,"tags":113},"https://www.suse.com/security/cve/CVE-2021-23192",[49],[89],{"url":115,"sources":116,"tags":117},"https://www.suse.com/security/cve/CVE-2021-3738",[49],[89],[],[],[],[122,135],{"ecosystem":123,"name":124,"vendor":125,"product":126,"cpe_part":9,"purl_type":127,"purl_namespace":125,"purl_name":126,"source":9,"versions":128},"openSUSE","ldb","opensuse","ldb&distro=openSUSE Leap 15.3","rpm",[129],{"version":130,"is_range":131,"range_type":132,"version_start":9,"version_start_type":9,"version_end":133,"version_end_type":134,"fixed_in":9},"lt2_2_2_3_3_1",true,"ecosystem","2.2.2-3.3.1","excluding",{"ecosystem":123,"name":136,"vendor":125,"product":137,"cpe_part":9,"purl_type":127,"purl_namespace":125,"purl_name":137,"source":9,"versions":138},"samba","samba&distro=openSUSE Leap 15.3",[139],{"version":140,"is_range":131,"range_type":132,"version_start":9,"version_start_type":9,"version_end":141,"version_end_type":134,"fixed_in":9},"lt4_13_13+git_528_140935f8d6a_3_12_1","4.13.13+git.528.140935f8d6a-3.12.1"]