{
  "threat_severity" : "Low",
  "public_date" : "2018-03-13T00:00:00Z",
  "bugzilla" : {
    "description" : "samba: NULL pointer dereference in printer server process",
    "id" : "1538771",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1538771"
  },
  "cvss3" : {
    "cvss3_base_score" : "4.3",
    "cvss3_scoring_vector" : "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
    "status" : "verified"
  },
  "cwe" : "CWE-476",
  "details" : [ "All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler service to crash.", "A null pointer dereference flaw was found in Samba RPC external printer service. An attacker could use this flaw to cause the printer spooler service to crash." ],
  "acknowledgement" : "Red Hat would like to thank the Samba project for reporting this issue.",
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 6",
    "release_date" : "2018-06-19T00:00:00Z",
    "advisory" : "RHSA-2018:1860",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6",
    "package" : "samba-0:3.6.23-51.el6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "release_date" : "2018-06-19T00:00:00Z",
    "advisory" : "RHSA-2018:1883",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6",
    "package" : "samba4-0:4.2.10-15.el6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "release_date" : "2018-10-30T00:00:00Z",
    "advisory" : "RHSA-2018:3056",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7",
    "package" : "samba-0:4.8.3-4.el7"
  }, {
    "product_name" : "Red Hat Gluster Storage 3.4 for RHEL 6",
    "release_date" : "2018-09-04T00:00:00Z",
    "advisory" : "RHSA-2018:2612",
    "cpe" : "cpe:/a:redhat:storage:3.4:samba:el6",
    "package" : "libtalloc-0:2.1.11-1.el6rhs"
  }, {
    "product_name" : "Red Hat Gluster Storage 3.4 for RHEL 6",
    "release_date" : "2018-09-04T00:00:00Z",
    "advisory" : "RHSA-2018:2612",
    "cpe" : "cpe:/a:redhat:storage:3.4:samba:el6",
    "package" : "libtdb-0:1.3.15-4.el6rhs"
  }, {
    "product_name" : "Red Hat Gluster Storage 3.4 for RHEL 6",
    "release_date" : "2018-09-04T00:00:00Z",
    "advisory" : "RHSA-2018:2612",
    "cpe" : "cpe:/a:redhat:storage:3.4:samba:el6",
    "package" : "libtevent-0:0.9.35-1.el6rhs"
  }, {
    "product_name" : "Red Hat Gluster Storage 3.4 for RHEL 6",
    "release_date" : "2018-09-04T00:00:00Z",
    "advisory" : "RHSA-2018:2612",
    "cpe" : "cpe:/a:redhat:storage:3.4:samba:el6",
    "package" : "samba-0:4.7.5-110.el6rhs"
  }, {
    "product_name" : "Red Hat Gluster Storage 3.4 for RHEL 7",
    "release_date" : "2018-09-04T00:00:00Z",
    "advisory" : "RHSA-2018:2613",
    "cpe" : "cpe:/a:redhat:storage:3.4:samba:el7",
    "package" : "libtalloc-0:2.1.11-1.el7rhgs"
  }, {
    "product_name" : "Red Hat Gluster Storage 3.4 for RHEL 7",
    "release_date" : "2018-09-04T00:00:00Z",
    "advisory" : "RHSA-2018:2613",
    "cpe" : "cpe:/a:redhat:storage:3.4:samba:el7",
    "package" : "libtdb-0:1.3.15-4.el7rhgs"
  }, {
    "product_name" : "Red Hat Gluster Storage 3.4 for RHEL 7",
    "release_date" : "2018-09-04T00:00:00Z",
    "advisory" : "RHSA-2018:2613",
    "cpe" : "cpe:/a:redhat:storage:3.4:samba:el7",
    "package" : "libtevent-0:0.9.35-1.el7rhgs"
  }, {
    "product_name" : "Red Hat Gluster Storage 3.4 for RHEL 7",
    "release_date" : "2018-09-04T00:00:00Z",
    "advisory" : "RHSA-2018:2613",
    "cpe" : "cpe:/a:redhat:storage:3.4:samba:el7",
    "package" : "samba-0:4.7.5-110.el7rhgs"
  } ],
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 5",
    "fix_state" : "Not affected",
    "package_name" : "samba",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 5",
    "fix_state" : "Not affected",
    "package_name" : "samba3x",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "samba",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2018-1050\nhttps://nvd.nist.gov/vuln/detail/CVE-2018-1050\nhttps://www.samba.org/samba/security/CVE-2018-1050.html" ],
  "name" : "CVE-2018-1050",
  "mitigation" : {
    "value" : "Ensure the paramter:\nrpc_server:spoolss = external\nis not set in the [global] section of your smb.conf.",
    "lang" : "en:us"
  },
  "csaw" : false
}