Andrei Popa

Name of the Vulnerable Software and Affected Versions: samba versions prior to 4.10.17 samba versions prior to 4.11.11 samba versions prior to 4.12.4 Description: A use-after-free flaw was found in the samba LDAP server. This issue can be exploited by a Samba LDAP user to crash samba, resulting in a denial of service. The flaw is related to the use of memory after it has been freed. Recommendations: For versions prior to 4.10.17, update to version 4.10.17 or later. For versions prior to 4.11.11, update to version 4.11.11 or later. For versions prior to 4.12.4, update to version 4.12.4 or later.

**Name of the Vulnerable Software and Affected Versions** samba versions prior to 4.10.15 samba versions prior to 4.11.8 samba versions prior to 4.12.2 **Description** A use-after-free flaw was found in the way samba AD DC LDAP servers handled 'Paged Results' control combined with the 'ASQ' control. This issue can be exploited by a malicious user in a samba AD to cause denial of service. **Recommendations** For versions prior to 4.10.15, update to version 4.10.15 or later. For versions prior to 4.11.8, update to version 4.11.8 or later. For versions prior to 4.12.2, update to version 4.12.2 or later. As a temporary workaround, consider restricting access to the `Paged Results` and `ASQ` controls in the LDAP server until a patch is available.