Description: Samba中发现路径泄露漏洞。作为Spotlight协议的一部分,Samba在搜索查询结果中公开共享、文件和目录的服务器端绝对路径。此缺陷允许恶意客户端或具有目标RPC请求的攻击者查看作为所公开路径的一部分的信息。 Broken commit info: Bugfix commit info: https://download.samba.orghttps://download.samba.org/pub/samba/ftp/patches/security/samba-4.17.10-security-2023-07-19.patch https://download.samba.orghttps://download.samba.org/pub/samba/ftp/patches/security/samba-4.16.11-security-2023-07-19.patch https://download.samba.orghttps://download.samba.org/pub/samba/ftp/patches/security/samba-4.18.5-security-2023-07-19.patch
PR: https://gitee.com/src-anolis-os/samba/pulls/36