Univention Bugzilla – Bug 56879
samba: information disclosure (5.0)
Last modified: 2023-11-28 10:59:21 CET
CVE-2018-14628: Unprivileged read of deleted object tombstones in AD LDAP server Details: https://www.samba.org/samba/security/CVE-2018-14628.html Semi-automatic adjustment of ACLs required on the "Deleted Objects" containers. Maybe we can automate this for most cases, where people have not customized the DSACL of those (4) objects.
GitLab issue: https://git.knut.univention.de/univention/ucs/-/issues/1922