VDB

ALPINE-CVE-2020-25721

ALPINE-CVE-2020-25721 PUBLISHED CVSS 8.800000190734863 HIGH

Kerberos acceptors need easy access to stable AD identifiers (eg objectSid). Samba as an AD DC now provides a way for Linux applications to obtain a reliable SID (and samAccountName) in issued tickets.

Risk Scores

CVSS v3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
Alpine:v3.22samba3.6.19-r0, 3.5.3-r0, 3.5.6-r4
Alpine:v3.14samba4.2.3-r0, 4.8.8-r0, 4.8.7-r0
Alpine:v3.19samba3.6.5-r0, 3.6.4-r1, 3.6.4-r0
Alpine:v3.21samba3.5.6-r2, 4.8.8-r0, 4.8.7-r0
Alpine:v3.16samba4.1.0-r2, 4.14.5-r0, 4.14.6-r0
Alpine:v3.17samba4.13.5-r0, 0, 3.2.11-r0
Alpine:v3.18samba3.6.19-r0, 4.14.5-r0, 4.14.6-r0
Alpine:v3.23samba0, 4.8.8-r0, 4.8.7-r0
Alpine:v3.13samba4.5.3-r0, 4.5.4-r0, 4.6.0-r0
Alpine:v3.15samba4.2.9-r0, 4.2.7-r0, 4.2.3-r3
Alpine:v3.20samba3.6.19-r0, 3.2.8-r0, 0

Timeline

  • Mar 16, 2022 CVE Published
  • Dec 3, 2025 CVE Updated
  • Apr 30, 2026 Distribution Patch

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›