TTCSIRT-255.121119: TT-CSIRT ADVISORY – SAMBA SECURITY UPDATES

TTCSIRT-255.121119: TT-CSIRT ADVISORY – SAMBA SECURITY UPDATES

Samba has released security updates to address vulnerabilities in multiple versions of Samba. TT CSIRT encourages all relevant parties to update your version as soon as possible to prevent potential exploits by cyber attackers who could take control of your system.

TTCSIRT urges users and administrators to review the following Samba Security Announcements and apply the necessary updates and workarounds.

 

CVE-2019-14861: AD DC zone-named record Denial of Service in DNS management server
https://www.samba.org/samba/security/CVE-2019-14861.html

 

CVE-2019-14870: Delegation Not Allowed not being enforced
https://www.samba.org/samba/security/CVE-2019-14870.html