CVE-2022-32746
N/A
N/A
Summary
A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module, resulting in a use-after-free issue. This issue is only possible when modifying certain privileged attributes, such as userAccountControl.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | samba | Versions prior to samba 4.16.4, samba 4.15.9, samba 4.14.14 | affected |
Weaknesses
- CWE-416: CWE-416
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.