all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Ubuntu Security Notice USN-5822-2

Add to bookmarks
Jan. 27, 2023, 3:13 p.m. |

Packet Storm packetstormsecurity.com

Ubuntu Security Notice 5822-2 - USN-5822-1 fixed vulnerabilities in Samba. The update for Ubuntu 20.04 LTS introduced regressions in certain environments. Pending investigation of these regressions, this update temporarily reverts the security fixes. It was discovered that Samba incorrectly handled the bad password count logic. It was discovered that Samba supported weak RC4/HMAC-MD5 in NetLogon Secure Channel. Greg Hudson discovered that Samba incorrectly handled PAC parsing. Joseph Sutton discovered that Samba could be forced to issue rc4-hmac encrypted Kerberos tickets.

bad channel environments fixes investigation issue logic lts md5 netlogon notice pac parsing password rc4 samba security security notice ubuntu update usn vulnerabilities

Visit resource

More from packetstormsecurity.com / Packet Storm

Debian Security Advisory 5661-1 8 hours ago | packetstormsecurity.com
advisory attacks bypass cookie +19
Debian Security Advisory 5660-1 8 hours ago | packetstormsecurity.com
advisory attacks bypass cookie +19
Centreon 23.10-1.el8 SQL Injection 8 hours ago | packetstormsecurity.com
centreon injection sql sql injection +3
Backdoor.Win32.Dumador.c MVID-2024-0679 Buffer Overflow 8 hours ago | packetstormsecurity.com
backdoor buffer buffer overflow buffer overflow vulnerability +4
Ubuntu Security Notice USN-6736-1 8 hours ago | packetstormsecurity.com
arbitrary code attacker code crash +10
Ubuntu Security Notice USN-6735-1 8 hours ago | packetstormsecurity.com
attacker automated certificate denial of service +15
Ubuntu Security Notice USN-6734-1 8 hours ago | packetstormsecurity.com
api attacker crash denial of service +9
Ubuntu Security Notice USN-6733-1 8 hours ago | packetstormsecurity.com
attacker channel crash ecdsa +15
Ubuntu Security Notice USN-6732-1 8 hours ago | packetstormsecurity.com
arbitrary code arbitrary code execution attacker attacks +23

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Cyber Security Professional

@ BT Group | 25A DLF City Phase-III,, Gurugram, India
View on infosec-jobs.com

Head of Cyber Security Operations

@ Vector Limited | Auckland, New Zealand
View on infosec-jobs.com

Security Analyst (SOC)

@ Accesa & RaRo | Cluj-Napoca, Romania
View on infosec-jobs.com

Senior - IT Compliance-Cyber (Technology Risk Consulting)

@ EY | Bengaluru, KA, IN, 560016
View on infosec-jobs.com

Security Automation Engineer Internship - Secure Development Team Product Security (Brno, Czech Republic)

@ Red Hat | Brno, Czechia
View on infosec-jobs.com
View more jobs