Bug 2154376 (CVE-2022-45141) - CVE-2022-45141 samba: Samba AD DC using Heimdal can be forced to issue rc4-hmac encrypted Kerberos tickets
Summary: CVE-2022-45141 samba: Samba AD DC using Heimdal can be forced to issue rc4-hm...
Alias: CVE-2022-45141
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
Depends On: 2154377 2154378 2154379 2154380 2154381 2154382 2154383 2154384 2154385 2154386 2154387
Blocks: 2154280 2175304
TreeView+ depends on / blocked
Reported: 2022-12-16 17:52 UTC by Marco Benatto
Modified: 2023-07-12 08:32 UTC (History)
8 users (show)

Fixed In Version: samba 4.15.13, samba 4.16.8, samba 4.15.13
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Last Closed: 2022-12-16 20:23:42 UTC

Attachments (Terms of Use)

Description Marco Benatto 2022-12-16 17:52:43 UTC
Since the Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability was disclosed by Microsoft on Nov 8 2022 and per RFC8429 it is assumed that rc4-hmac is weak, Vulnerable Samba Active Directory DCs will issue rc4-hmac encrypted tickets despite the target server supporting better encryption (eg aes256-cts-hmac-sha1-96).

Comment 1 Marco Benatto 2022-12-16 17:53:53 UTC
Created samba tracking bugs for this issue:

Affects: fedora-all [bug 2154377]

Note You need to log in before you can comment on or make changes to this bug.