Samba 4.14.2, 4.13.7 and 4.12.14 update with vulnerabilities fixed
Corrective releases of the Samba package 4.14.2, 4.13.7 and 4.12.14 have been prepared, in which two vulnerabilities are eliminated: CVE-2020-27840 - a buffer overflow that occurs when processing specially designed DN (Distinguished Name) names. An anonymous attacker can crash a Samba-based AD DC LDAP server by sending a specially crafted bind request. Since during the attack it is possible to control the overwriting area, […]