CVE-2021-3671

A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authenticated user could use this flaw to crash the samba server.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
VendorProductVersion
sambasamba
𝑥
< 4.13.12
sambasamba
4.14.0 ≤
𝑥
< 4.14.8
debiandebian_linux
10.0
debiandebian_linux
11.0
netappmanagement_services_for_element_software
-
netappmanagement_services_for_netapp_hci
-
netappontap_select_deploy_administration_utility
-
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
heimdal
bullseye (security)
7.7.0+dfsg-2+deb11u3
fixed
bullseye
7.7.0+dfsg-2+deb11u3
fixed
stretch
no-dsa
buster
ignored
bookworm
7.8.git20221117.28daf24+dfsg-2
fixed
sid
7.8.git20221117.28daf24+dfsg-8
fixed
trixie
7.8.git20221117.28daf24+dfsg-8
fixed
samba
bullseye (security)
2:4.13.13+dfsg-1~deb11u6
fixed
bullseye
2:4.13.13+dfsg-1~deb11u6
fixed
stretch
no-dsa
buster
ignored
bookworm
2:4.17.12+dfsg-0+deb12u1
fixed
bookworm (security)
2:4.17.12+dfsg-0+deb12u1
fixed
sid
2:4.21.1+dfsg-2
fixed
trixie
2:4.21.1+dfsg-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
heimdal
noble
not-affected
mantic
not-affected
lunar
not-affected
kinetic
not-affected
jammy
not-affected
impish
ignored
hirsute
ignored
focal
Fixed 7.7.0+dfsg-1ubuntu1.1
released
bionic
Fixed 7.5.0+dfsg-1ubuntu0.1
released
xenial
Fixed 1.7~git20150920+dfsg-4ubuntu1.16.04.1+esm1
released
trusty
Fixed 1.6~git20131207+dfsg-1ubuntu1.2+esm1
released
samba
noble
Fixed 2:4.13.14+dfsg-0ubuntu1
released
mantic
Fixed 2:4.13.14+dfsg-0ubuntu1
released
lunar
Fixed 2:4.13.14+dfsg-0ubuntu1
released
kinetic
Fixed 2:4.13.14+dfsg-0ubuntu1
released
jammy
Fixed 2:4.13.14+dfsg-0ubuntu1
released
impish
Fixed 2:4.13.14+dfsg-0ubuntu0.21.10.1
released
hirsute
Fixed 2:4.13.14+dfsg-0ubuntu0.21.04.1
released
focal
Fixed 2:4.13.14+dfsg-0ubuntu0.20.04.1
released
bionic
Fixed 2:4.7.6+dfsg~ubuntu-0ubuntu2.26
released
xenial
needed
trusty
needed
Common Weakness Enumeration
References
https://bugzilla.redhat.com/show_bug.cgi?id=2013080%2C
https://bugzilla.samba.org/show_bug.cgi?id=14770%2C
https://github.com/heimdal/heimdal/commit/04171147948d0a3636bc6374181926f0fb2ec83a
https://lists.debian.org/debian-lts-announce/2022/11/msg00034.html
https://security.netapp.com/advisory/ntap-20221215-0002/
https://security.netapp.com/advisory/ntap-20230216-0008/
https://www.debian.org/security/2022/dsa-5287
https://bugzilla.redhat.com/show_bug.cgi?id=2013080%2C
https://bugzilla.samba.org/show_bug.cgi?id=14770%2C
https://github.com/heimdal/heimdal/commit/04171147948d0a3636bc6374181926f0fb2ec83a
https://lists.debian.org/debian-lts-announce/2022/11/msg00034.html
https://security.netapp.com/advisory/ntap-20221215-0002/
https://security.netapp.com/advisory/ntap-20230216-0008/
https://www.debian.org/security/2022/dsa-5287