CVE-2022-45141

CVE-2022-45141

Name

CVE-2022-45141

Description

Since the Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability was disclosed by Microsoft on Nov 8 2022 and per RFC8429 it is assumed that rc4-hmac is weak, Vulnerable Samba Active Directory DCs will issue rc4-hmac encrypted tickets despite the target server supporting better encryption (eg aes256-cts-hmac-sha1-96).

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
MISC	https://www.samba.org/samba/security/CVE-2022-45141.html
GENTOO	https://security.gentoo.org/glsa/202309-06

Type

URI

MISC

https://www.samba.org/samba/security/CVE-2022-45141.html

GENTOO

https://security.gentoo.org/glsa/202309-06

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:samba:samba::::::::`	samba	>= 4.16.0	< 4.16.8
`cpe:2.3:a:samba:samba::::::::`	samba	>= None	< 4.15.13

CPE URI

Source package

Min version

Max version

cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*

samba

>= 4.16.0

< 4.16.8

cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*

samba

>= None

< 4.15.13

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
samba	edge-main	4.16.7-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
samba	edge-main	4.16.7-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
samba	edge-main	4.16.6-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
samba	edge-main	4.16.4-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
samba	edge-main	4.15.9-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
samba	edge-main	4.15.2-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
samba	edge-main	4.15.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
samba	edge-main	4.14.4-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
samba	edge-main	4.14.2-r0	None	possibly vulnerable
samba	edge-main	4.12.9-r0	None	possibly vulnerable
samba	edge-main	4.12.7-r0	None	possibly vulnerable
samba	edge-main	4.12.5-r0	None	possibly vulnerable
samba	edge-main	4.12.2-r0	None	possibly vulnerable
samba	edge-main	4.11.5-r0	None	possibly vulnerable
samba	edge-main	4.11.3-r0	None	possibly vulnerable
samba	edge-main	4.11.2-r0	None	possibly vulnerable
samba	edge-main	4.10.8-r0	None	possibly vulnerable
samba	edge-main	4.10.5-r0	None	possibly vulnerable
samba	edge-main	4.10.3-r0	None	possibly vulnerable
samba	edge-main	4.8.11-r0	None	possibly vulnerable
samba	edge-main	4.8.7-r0	None	possibly vulnerable
samba	edge-main	4.8.4-r0	None	possibly vulnerable
samba	edge-main	4.7.6-r0	None	possibly vulnerable
samba	edge-main	4.7.3-r0	None	possibly vulnerable
samba	edge-main	4.7.0-r0	None	possibly vulnerable
samba	edge-main	4.6.1-r0	None	possibly vulnerable
samba	3.22-main	4.16.7-r0	None	possibly vulnerable
samba	3.22-main	4.16.6-r0	None	possibly vulnerable
samba	3.22-main	4.15.9-r0	None	possibly vulnerable
samba	3.22-main	4.15.2-r0	None	possibly vulnerable
samba	3.22-main	4.15.0-r0	None	possibly vulnerable
samba	3.22-main	4.14.4-r0	None	possibly vulnerable
samba	3.22-main	4.14.2-r0	None	possibly vulnerable
samba	3.22-main	4.12.9-r0	None	possibly vulnerable
samba	3.22-main	4.12.7-r0	None	possibly vulnerable
samba	3.22-main	4.12.5-r0	None	possibly vulnerable
samba	3.22-main	4.12.2-r0	None	possibly vulnerable
samba	3.22-main	4.11.5-r0	None	possibly vulnerable
samba	3.22-main	4.11.3-r0	None	possibly vulnerable
samba	3.22-main	4.11.2-r0	None	possibly vulnerable
samba	3.22-main	4.10.8-r0	None	possibly vulnerable
samba	3.22-main	4.10.5-r0	None	possibly vulnerable
samba	3.22-main	4.10.3-r0	None	possibly vulnerable
samba	3.22-main	4.8.11-r0	None	possibly vulnerable
samba	3.22-main	4.8.7-r0	None	possibly vulnerable
samba	3.22-main	4.8.4-r0	None	possibly vulnerable
samba	3.22-main	4.7.6-r0	None	possibly vulnerable
samba	3.22-main	4.7.3-r0	None	possibly vulnerable
samba	3.22-main	4.7.0-r0	None	possibly vulnerable
samba	3.22-main	4.6.1-r0	None	possibly vulnerable
samba	3.21-main	4.16.7-r0	None	possibly vulnerable
samba	3.21-main	4.16.6-r0	None	possibly vulnerable
samba	3.21-main	4.15.9-r0	None	possibly vulnerable
samba	3.21-main	4.15.2-r0	None	possibly vulnerable
samba	3.21-main	4.15.0-r0	None	possibly vulnerable
samba	3.21-main	4.14.4-r0	None	possibly vulnerable
samba	3.21-main	4.14.2-r0	None	possibly vulnerable
samba	3.21-main	4.12.9-r0	None	possibly vulnerable
samba	3.21-main	4.12.7-r0	None	possibly vulnerable
samba	3.21-main	4.12.5-r0	None	possibly vulnerable
samba	3.21-main	4.12.2-r0	None	possibly vulnerable
samba	3.21-main	4.11.5-r0	None	possibly vulnerable
samba	3.21-main	4.11.3-r0	None	possibly vulnerable
samba	3.21-main	4.11.2-r0	None	possibly vulnerable
samba	3.21-main	4.10.8-r0	None	possibly vulnerable
samba	3.21-main	4.10.5-r0	None	possibly vulnerable
samba	3.21-main	4.10.3-r0	None	possibly vulnerable
samba	3.21-main	4.8.11-r0	None	possibly vulnerable
samba	3.21-main	4.8.7-r0	None	possibly vulnerable
samba	3.21-main	4.8.4-r0	None	possibly vulnerable
samba	3.21-main	4.7.6-r0	None	possibly vulnerable
samba	3.21-main	4.7.3-r0	None	possibly vulnerable
samba	3.21-main	4.7.0-r0	None	possibly vulnerable
samba	3.21-main	4.6.1-r0	None	possibly vulnerable
samba	3.20-main	4.16.7-r0	None	possibly vulnerable
samba	3.20-main	4.16.6-r0	None	possibly vulnerable
samba	3.20-main	4.15.9-r0	None	possibly vulnerable
samba	3.20-main	4.15.2-r0	None	possibly vulnerable
samba	3.20-main	4.15.0-r0	None	possibly vulnerable
samba	3.20-main	4.14.4-r0	None	possibly vulnerable
samba	3.20-main	4.14.2-r0	None	possibly vulnerable
samba	3.20-main	4.12.9-r0	None	possibly vulnerable
samba	3.20-main	4.12.7-r0	None	possibly vulnerable
samba	3.20-main	4.12.5-r0	None	possibly vulnerable
samba	3.20-main	4.12.2-r0	None	possibly vulnerable
samba	3.20-main	4.11.5-r0	None	possibly vulnerable
samba	3.20-main	4.11.3-r0	None	possibly vulnerable
samba	3.20-main	4.11.2-r0	None	possibly vulnerable
samba	3.20-main	4.10.8-r0	None	possibly vulnerable
samba	3.20-main	4.10.5-r0	None	possibly vulnerable
samba	3.20-main	4.10.3-r0	None	possibly vulnerable
samba	3.20-main	4.8.11-r0	None	possibly vulnerable
samba	3.20-main	4.8.7-r0	None	possibly vulnerable
samba	3.20-main	4.8.4-r0	None	possibly vulnerable
samba	3.20-main	4.7.6-r0	None	possibly vulnerable
samba	3.20-main	4.7.3-r0	None	possibly vulnerable
samba	3.20-main	4.7.0-r0	None	possibly vulnerable
samba	3.20-main	4.6.1-r0	None	possibly vulnerable
samba	3.19-main	4.16.7-r0	None	possibly vulnerable
samba	3.19-main	4.16.6-r0	None	possibly vulnerable
samba	3.19-main	4.15.9-r0	None	possibly vulnerable
samba	3.19-main	4.15.2-r0	None	possibly vulnerable
samba	3.19-main	4.15.0-r0	None	possibly vulnerable
samba	3.19-main	4.14.4-r0	None	possibly vulnerable
samba	3.19-main	4.14.2-r0	None	possibly vulnerable
samba	3.19-main	4.12.9-r0	None	possibly vulnerable
samba	3.19-main	4.12.7-r0	None	possibly vulnerable
samba	3.19-main	4.12.5-r0	None	possibly vulnerable
samba	3.19-main	4.12.2-r0	None	possibly vulnerable
samba	3.19-main	4.11.5-r0	None	possibly vulnerable
samba	3.19-main	4.11.3-r0	None	possibly vulnerable
samba	3.19-main	4.11.2-r0	None	possibly vulnerable
samba	3.19-main	4.10.8-r0	None	possibly vulnerable
samba	3.19-main	4.10.5-r0	None	possibly vulnerable
samba	3.19-main	4.10.3-r0	None	possibly vulnerable
samba	3.19-main	4.8.11-r0	None	possibly vulnerable
samba	3.19-main	4.8.7-r0	None	possibly vulnerable
samba	3.19-main	4.8.4-r0	None	possibly vulnerable
samba	3.19-main	4.7.6-r0	None	possibly vulnerable
samba	3.19-main	4.7.3-r0	None	possibly vulnerable
samba	3.19-main	4.7.0-r0	None	possibly vulnerable
samba	3.19-main	4.6.1-r0	None	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages