| Errata ID | 551 |
|---|---|
| Date | 2020-04-28 |
| Source package | samba |
| Fixed in version | 2:4.10.1-1A~4.4.0.202004212102 |
| Description | This update addresses the following issues: * A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a use-after-free in Samba's AD DC LDAP server (CVE-2020-10700). * A deeply nested filter in an un-authenticated LDAP search can exhaust the LDAP server's stack memory causing a crash of the Samba/AD LDAP server component (CVE-2020-10704). |
| Additional notes | |
| CVE ID | CVE-2020-10700 CVE-2020-10704 |
| UCS Bug number | #51121 |
