VDB

GCVE-VVD-MAGEIA-2019-286

GCVE-VVD-MAGEIA-2019-286
Advisory Published
Vulnetix · Advisory published September 21, 2019
Updated samba packages fix security vulnerabilities: A combination of parameters and permissions in smb.conf can allow user to escape from the share path definition (CVE-2019-10197). An authenticated user can crash the Samba AD DC's RPC server process via a NULL pointer dereference (CVE-2019-12435) An user with read access to the directory can cause a NULL pointer dereference using the paged search control (CVE-2019-12436). For other fixes in this update, see the referenced changelogs.
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiasamba0 (affected), 4.10.8-3.mga7 (unaffected)
Mageialdb0 (affected), 1.5.5-1.mga7 (unaffected)

Aliases

CVE-2019-12436CVE-2019-12435

Transitive aliases

EUVD-2019-4046GHSA-8gjg-6f8w-gvhcGHSA-8c68-g8rx-85g8BDU:2020-02775EUVD-2019-4045BDU:2020-00724

References

Updated samba packages fix security vulnerabilities
advisory
Updated samba packages fix security vulnerabilities
issue
Updated samba packages fix security vulnerabilities
issue
Updated samba packages fix security vulnerabilities
issue
Updated samba packages fix security vulnerabilities
issue
Updated samba packages fix security vulnerabilities
issue
Updated samba packages fix security vulnerabilities
issue
Updated samba packages fix security vulnerabilities
issue
Updated samba packages fix security vulnerabilities
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›