VDB

GCVE-VVD-MAGEIA-2017-145

GCVE-VVD-MAGEIA-2017-145
Advisory Published
Vulnetix · Advisory published May 25, 2017
A flaw was found in the way Samba handled PAC (Privilege Attribute Certificate) checksums. A remote, authenticated attacker could use this flaw to crash the winbindd process (CVE-2016-2126). Jann Horn discovered that Samba incorrectly handled symlinks. An authenticated remote attacker could use this issue to access files on the server outside of the exported directories (CVE-2017-2619). A remote code execution flaw was found in Samba. A malicious authenticated samba client, having write access to the samba share, could use this flaw to execute arbitrary code as root (CVE-2017-7494).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiasamba0 (affected), 3.6.25-2.7.mga5 (unaffected)

References

Updated samba packages fix security vulnerability
advisory
Updated samba packages fix security vulnerability
issue
Updated samba packages fix security vulnerability
issue
Updated samba packages fix security vulnerability
issue
Updated samba packages fix security vulnerability
issue
Updated samba packages fix security vulnerability
issue
Updated samba packages fix security vulnerability
issue
Updated samba packages fix security vulnerability
advisory
Updated samba packages fix security vulnerability
advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›