Samba versions 4.7 and later, built with MIT Kerberos support, are vulnerable to a crash via the S4U2self extension. A user in a Samba Active Directory domain can crash the KDC when Samba is built in the non-default MIT Kerberos configuration.
Samba versions 4.7 and later built with MIT Kerberos support are vulnerable to a crash via the S4U2self extension.
Name: The Samba Team
Upstream: Isaac Boukris
Created samba tracking bugs for this issue:
Affects: fedora-all [bug 1654093]
This flaw does not affect the version of samba shipped with Red Hat Enterprise Linux because there is no support for samba as Active Directory Domain Controller.