CVE - CVE-2019-14870

CVE-ID
CVE-2019-14870	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an issue, where the S4U (MS-SFU) Kerberos delegation model includes a feature allowing for a subset of clients to be opted out of constrained delegation in any way, either S4U2Self or regular Kerberos authentication, by forcing all tickets for these clients to be non-forwardable. In AD this is implemented by a user attribute delegation_not_allowed (aka not-delegated), which translates to disallow-forwardable. However the Samba AD DC does not do that for S4U2Self and does set the forwardable flag even if the impersonated client has the not-delegated flag set.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14870 CONFIRM:https://security.netapp.com/advisory/ntap-20191210-0002/ CONFIRM:https://security.netapp.com/advisory/ntap-20230216-0008/ CONFIRM:https://www.samba.org/samba/security/CVE-2019-14870.html CONFIRM:https://www.synology.com/security/advisory/Synology_SA_19_40 FEDORA:FEDORA-2019-11dddb785b URL:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WNKA4YIPV7AZR7KK3GW6L3HKGHSGJZFE/ FEDORA:FEDORA-2019-be98a08835 URL:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PJH3ROOFYMOATD2UEPC47P5RPBDTY77E/ GENTOO:GLSA-202003-52 URL:https://security.gentoo.org/glsa/202003-52 GENTOO:GLSA-202310-06 URL:https://security.gentoo.org/glsa/202310-06 MLIST:[debian-lts-announce] 20210529 [SECURITY] [DLA 2668-1] samba security update URL:https://lists.debian.org/debian-lts-announce/2021/05/msg00023.html MLIST:[debian-lts-announce] 20221126 [SECURITY] [DLA 3206-1] heimdal security update URL:https://lists.debian.org/debian-lts-announce/2022/11/msg00034.html SUSE:openSUSE-SU-2019:2700 URL:http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00038.html UBUNTU:USN-4217-1 URL:https://usn.ubuntu.com/4217-1/ UBUNTU:USN-4217-2 URL:https://usn.ubuntu.com/4217-2/
Assigning CNA
Red Hat, Inc.
Date Record Created
20190810	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20190810)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)