What the vulnerability does

01Description

Kerberos acceptors need easy access to stable AD identifiers (eg objectSid). Samba as an AD DC now provides a way for Linux applications to obtain a reliable SID (and samAccountName) in issued tickets.

Key dates

02Disclosure timeline

March 16, 2022 CVE published
August 4, 2024 Record updated