| Errata ID | 569 |
|---|---|
| Date | 2019-09-03 |
| Source package | samba |
| Fixed in version | 2:4.10.1-1A~4.3.0.201908281815 |
| Description | This update addresses the following issue: * Under certain parameter configurations, when an SMB client accesses a network share and the user does not have permission to access the share root directory, it is possible for the user to escape from the share to see the complete '/' filesystem. Unix permission checks in the kernel are still enforced (CVE-2019-10197). |
| Additional notes | |
| CVE ID | CVE-2019-10197 |
| UCS Bug number | #50055 |
