Thilo Uttendorfer

**Name of the Vulnerable Software and Affected Versions** ldb versions prior to 1.1.24 Samba 4.1.x versions prior to 4.1.22 Samba 4.2.x versions prior to 4.2.7 Samba 4.3.x versions prior to 4.3.3 **Description** The issue is related to the `ldb wildcard compare` function, which mishandles certain zero values. This allows remote attackers to cause a denial of service, specifically an infinite loop, by sending crafted packets. The problem is associated with an error in handling numbers. **Recommendations** For ldb versions prior to 1.1.24, update to version 1.1.24 or later. For Samba 4.1.x versions prior to 4.1.22, update to version 4.1.22 or later. For Samba 4.2.x versions prior to 4.2.7, update to version 4.2.7 or later. For Samba 4.3.x versions prior to 4.3.3, update to version 4.3.3 or later.