Homepage

samba vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the samba package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
Improper Input Validation

*
  • M
NULL Pointer Dereference

*
  • H
Resource Exhaustion

*
  • M
Use After Free

*
  • H
Buffer Overflow

*
  • M
CVE-2019-14902

*
  • M
Out-of-bounds Read

*
  • M
Improper Authentication

*
  • M
Incorrect Default Permissions

*
  • M
Directory Traversal

*
  • M
Weak Password Requirements

*
  • M
NULL Pointer Dereference

*
  • H
Improperly Implemented Security Check for Standard

<2:4.2.14+dfsg-0+deb8u13
  • M
Directory Traversal

<2:4.2.14+dfsg-0+deb8u12
  • M
Out-of-bounds Read

*
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<2:4.2.14+dfsg-0+deb8u11
  • M
NULL Pointer Dereference

<2:4.2.14+dfsg-0+deb8u11
  • M
Information Exposure

<2:4.2.14+dfsg-0+deb8u10
  • H
Out-of-Bounds

<2:4.2.14+dfsg-0+deb8u10
  • H
Out-of-Bounds

<2:4.2.14+dfsg-0+deb8u2
  • M
Improper Input Validation

<2:4.2.14+dfsg-0+deb8u2
  • H
Cryptographic Issues

<2:4.2.14+dfsg-0+deb8u8
  • H
CVE-2017-12150

<2:4.2.14+dfsg-0+deb8u8
  • H
Information Exposure

<2:4.2.14+dfsg-0+deb8u8
  • M
Race Condition

<2:3.4.7~dfsg-2
  • M
NULL Pointer Dereference

<2:4.2.14+dfsg-0+deb8u12
  • H
Incorrect Authorization

<2:4.2.14+dfsg-0+deb8u12
  • H
Race Condition

<2:4.2.14+dfsg-0+deb8u4
  • C
Use After Free

<2:4.2.14+dfsg-0+deb8u9
  • H
Out-of-Bounds

<2:4.2.14+dfsg-0+deb8u9
  • H
Insufficient Verification of Data Authenticity

<2:4.2.14+dfsg-0+deb8u7
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<2:4.2.14+dfsg-0+deb8u12
  • C
Arbitrary Code Injection

<2:4.2.14+dfsg-0+deb8u6
  • M
Access Restriction Bypass

<2:4.2.14+dfsg-0+deb8u2
  • H
Improper Access Control

<2:4.2.14+dfsg-0+deb8u2
  • H
Cryptographic Issues

<2:4.2.10+dfsg-0+deb8u1
  • M
Security Features

<2:4.2.10+dfsg-0+deb8u1
  • M
Security Features

<2:4.2.10+dfsg-0+deb8u1
  • M
Security Features

<2:4.2.10+dfsg-0+deb8u1
  • M
CVE-2015-5370

<2:4.2.10+dfsg-0+deb8u1
  • M
Security Features

<2:4.2.10+dfsg-0+deb8u1
  • M
Security Features

<2:4.2.10+dfsg-0+deb8u1
  • H
Security Features

<2:4.2.10+dfsg-0+deb8u1
  • M
Out-of-Bounds

<2:4.1.17+dfsg-2+deb8u2
  • M
Improper Access Control

<2:4.1.17+dfsg-2+deb8u2
  • H
Information Exposure

<2:4.1.17+dfsg-2+deb8u1
  • M
Information Exposure

<2:4.1.17+dfsg-2+deb8u1
  • M
Numeric Errors

<2:4.1.17+dfsg-2+deb8u1
  • H
Access Restriction Bypass

<2:4.1.17+dfsg-2+deb8u1
  • M
Improper Input Validation

<2:4.1.17+dfsg-2+deb8u1
  • H
Resource Management Errors

<2:4.1.17+dfsg-2+deb8u1
  • H
Access Restriction Bypass

<2:4.1.17+dfsg-2+deb8u1
  • C
Code

<2:4.1.17+dfsg-1
  • H
Access Restriction Bypass

<2:4.1.17+dfsg-1
  • H
Arbitrary Code Injection

<2:4.1.11+dfsg-1
  • M
Improper Input Validation

<2:4.1.9+dfsg-1
  • L
Out-of-Bounds

<2:4.1.9+dfsg-1
  • L
CVE-2014-0178

<2:4.1.8+dfsg-1
  • M
Improper Input Validation

<2:4.1.8+dfsg-1
  • M
Credentials Management

<2:4.1.6+dfsg-1
  • M
Access Restriction Bypass

<2:4.1.6+dfsg-1
  • H
Out-of-Bounds

<2:4.0.13+dfsg-1
  • M
Improper Input Validation

<2:4.0.13+dfsg-1
  • L
Cryptographic Issues

<2:4.0.11+dfsg-1
  • M
Access Restriction Bypass

<2:4.0.11+dfsg-1
  • M
Numeric Errors

<2:3.6.17-1
  • M
Access Restriction Bypass

<2:3.6.6-1
  • M
Cross-site Request Forgery (CSRF)

<2:3.6.6-5
  • M
Improper Input Validation

<2:3.6.6-5
  • M
Access Restriction Bypass

<2:3.6.5-1
  • C
Numeric Errors

<2:3.6.4-1
  • H
Out-of-Bounds

<2:3.4.0~pre1-1
  • M
Information Exposure

<2:3.6.3-1
  • L
Improper Input Validation

<2:3.4.7~dfsg-2
  • M
Cross-site Request Forgery (CSRF)

<2:3.5.10~dfsg-1
  • L
Cross-site Scripting (XSS)

<2:3.5.10~dfsg-1
  • M
Improper Input Validation

<2:3.4.7~dfsg-2
  • M
Out-of-Bounds

<2:3.5.7~dfsg-1
  • H
Out-of-Bounds

<2:3.5.5~dfsg-1
  • M
CVE-2010-1635

<2:3.6.1-2
  • M
Out-of-Bounds

<2:3.5.4~dfsg-2
  • H
Out-of-Bounds

<2:3.4.0~pre1-1
  • H
Access Restriction Bypass

<2:3.4.7~dfsg-1
  • L
Directory Traversal

<2:3.4.6~dfsg-1
  • M
Link Following

<2:3.4.5~dfsg-2
  • M
Improper Input Validation

<2:3.4.5~dfsg-2
  • M
CVE-2009-2906

<2:3.4.2-1
  • L
Access Restriction Bypass

<2:3.4.2-1
  • M
Access Restriction Bypass

<2:3.4.2-1
  • M
Access Restriction Bypass

<2:3.3.6-1
  • H
Use of Externally-Controlled Format String

<2:3.3.6-1
  • M
Improper Input Validation

<2:3.2.5-3
  • H
Information Exposure

<2:3.2.5-1
  • M
Access Restriction Bypass

<2:3.2.3-1
  • H
Out-of-Bounds

<1:3.0.30-1
  • H
Out-of-Bounds

<3.0.28-1
  • H
Out-of-Bounds

<3.0.27-1
  • H
Out-of-Bounds

<3.0.27-1
  • H
Access Restriction Bypass

<3.0.26-1
  • H
CVE-2007-2444

<3.0.25-1
  • C
Out-of-Bounds

<3.0.25-1
  • M
CVE-2007-2447

<3.0.25-1
  • H
Use of Externally-Controlled Format String

<3.0.23d-5
  • M
CVE-2007-0452

<3.0.23d-5
  • M
CVE-2006-3403

<3.0.23a-1
  • L
CVE-2006-1059

<3.0.22-1
  • C
CVE-2004-0882

<3.0.7
  • M
CVE-2004-0930

<3.0.8-1
  • C
CVE-2004-1154

<3.0.10-1
  • M
CVE-2004-0808

<3.0.7
  • M
CVE-2004-0829

<2.2.11
  • M
CVE-2004-2546

<3.0.6-1
  • H
CVE-2004-0815

<3.0.6-1
  • M
CVE-2004-0807

<3.0.7
  • M
CVE-2004-0686

<3.0.5
  • C
CVE-2004-0600

<3.0.5
  • H
CVE-2004-0186

<3.0.2-2
  • H
CVE-2004-0082

<3.0.7
  • C
CVE-2003-0196

<3.0
  • C
CVE-2003-0201

<3.0
  • C
CVE-2003-0085

<2.2.8
  • L
CVE-2003-0086

<2.2.8
  • H
Out-of-Bounds

<2.2.5
  • C
CVE-2002-1318

<2.2.7