An important Samba 4 security release
An important Samba 4 security release
[Security] Posted Mar 13, 2018 18:33 UTC (Tue) by corbet
Anybody running Samba 4 servers probably wants to take a look at this
alert and upgrade their systems. "CVE-2018-1057:
On a Samba 4 AD DC the LDAP server in all versions of Samba from
4.0.0 onwards incorrectly validates permissions to modify passwords
over LDAP allowing authenticated users to change any other users'
passwords, including administrative users.
"