CVE-2021-20254

Summary

CVE	CVE-2021-20254
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2021-05-05 14:15:00 UTC
Updated	2023-11-07 03:29:00 UTC
Description	A flaw was found in samba. The Samba smbd file server must map Windows group identities (SIDs) into unix group ids (gids). The code that performs this had a flaw that could allow it to read data beyond the end of the array in the case where a negative cache entry had been added to the mapping cache. This could cause the calling code to return those values into the process token that stores the group membership for a user. The highest threat from this vulnerability is to data confidentiality and integrity.

Risk And Classification

Problem Types: CWE-125

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Debian	Debian Linux	9.0	All	All	All
Operating System	Fedoraproject	Fedora	32	All	All	All
Operating System	Fedoraproject	Fedora	33	All	All	All
Operating System	Redhat	Enterprise Linux	7.0	All	All	All
Operating System	Redhat	Enterprise Linux	8.0	All	All	All
Application	Samba	Samba	All	All	All	All

References

Reference	Source	Link	Tags
[SECURITY] Fedora 32 Update: samba-4.12.15-0.fc32 - package-announce - Fedora Mailing-Lists		lists.fedoraproject.org
1949442 – (CVE-2021-20254) CVE-2021-20254 samba: Negative idmap cache entries can cause incorrect group entries in the Samba file server process token	MISC	bugzilla.redhat.com
CVE-2021-20254 Samba Vulnerability in NetApp Products \| NetApp Product Security	MISC	security.netapp.com
[SECURITY] Fedora 32 Update: samba-4.12.15-0.fc32 - package-announce - Fedora Mailing-Lists	FEDORA	lists.fedoraproject.org
Samba - Security Announcement Archive	MISC	www.samba.org
Samba: Multiple vulnerabilities (GLSA 202105-22) — Gentoo security	GENTOO	security.gentoo.org
[SECURITY] [DLA 2668-1] samba security update	MLIST	lists.debian.org
[SECURITY] Fedora 33 Update: samba-4.13.8-0.fc33 - package-announce - Fedora Mailing-Lists	FEDORA	lists.fedoraproject.org
[SECURITY] Fedora 33 Update: samba-4.13.8-0.fc33 - package-announce - Fedora Mailing-Lists		lists.fedoraproject.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

159251 Oracle Enterprise Linux Security Update for samba (ELSA-2021-2313)
159445 Oracle Enterprise Linux Security Update for samba (ELSA-2021-4058)
174965 SUSE Enterprise Linux Security Update for samba (SUSE-SU-2021:1438-1)
174966 SUSE Enterprise Linux Security Update for samba (SUSE-SU-2021:1444-1)
174967 SUSE Enterprise Linux Security Update for samba (SUSE-SU-2021:1445-1)
174981 SUSE Enterprise Linux Security Update for samba (SUSE-SU-2021:1492-1)
174982 SUSE Enterprise Linux Security Update for samba (SUSE-SU-2021:1498-1)
178607 Debian Security Update for samba (DLA 2668-1)
180095 Debian Security Update for samba (CVE-2021-20254)
198349 Ubuntu Security Notification for Samba vulnerability (USN-4930-1)
239404 Red Hat Update for samba (RHSA-2021:2313)
239443 Red Hat Update for samba (RHSA-2021:2313)
239759 Red Hat Update for samba security (RHSA-2021:3723)
239761 Red Hat Update for samba security (RHSA-2021:3724)
239764 Red Hat Update for samba (RHSA-2021:4058)
239915 Red Hat Update for samba (RHSA-2021:4866)
257084 CentOS Security Update for samba (CESA-2021:2313)
281234 Fedora Security Update for samba (FEDORA-2021-7026246ea9)
281235 Fedora Security Update for samba (FEDORA-2021-1d0807008b)
281236 Fedora Security Update for samba (FEDORA-2021-7de0418ec8)
296065 Oracle Solaris 11.4 Support Repository Update (SRU) 39.107.1 Missing (CPUOCT2021)
352457 Amazon Linux Security Advisory for samba: ALAS2-2021-1680
353170 Amazon Linux Security Advisory for samba : ALAS-2022-1564
377403 Alibaba Cloud Linux Security Update for samba (ALINUX3-SA-2021:0077)
377437 Alibaba Cloud Linux Security Update for samba (ALINUX2-SA-2021:0033)
500626 Alpine Linux Security Update for samba
501492 Alpine Linux Security Update for samba
501781 Alpine Linux Security Update for samba
504392 Alpine Linux Security Update for samba
670498 EulerOS Security Update for samba (EulerOS-SA-2021-2256)
670524 EulerOS Security Update for samba (EulerOS-SA-2021-2282)
670556 EulerOS Security Update for samba (EulerOS-SA-2021-2315)
670589 EulerOS Security Update for samba (EulerOS-SA-2021-2347)
670688 EulerOS Security Update for samba (EulerOS-SA-2021-2446)
670994 EulerOS Security Update for samba (EulerOS-SA-2021-2615)
690154 Free Berkeley Software Distribution (FreeBSD) Security Update for samba (6f33d38b-aa18-11eb-b3f1-005056a311d1)
710094 Gentoo Linux Samba Multiple vulnerabilities (GLSA 202105-22)
750236 OpenSUSE Security Update for samba (openSUSE-SU-2021:0636-1)
751157 OpenSUSE Security Update for samba (openSUSE-SU-2021:3187-1)
901689 Common Base Linux Mariner (CBL-Mariner) Security Update for samba (7352)
940344 AlmaLinux Security Update for samba (ALSA-2021:4058)
960002 Rocky Linux Security Update for samba (RLSA-2021:4058)