Описание
ELSA-2020-1878: samba security, bug fix, and enhancement update (MODERATE)
openchange [2.3-24.0.1]
- Add patch to build against samba 4.11
[2.3-24]
- Rebuild for newer samba and libldb
samba [4.11.2-13]
- resolves: #1802182 - Fix join using netbios name
[4.11.2-12]
- related: #1781232 - Improve debug output of smbclient
- resolves: #1794461 - Do not return bogus inode numbers in cli_qpathinfo2()/cli_qpathinfo3() for SMB1
- resolves: #1794442 - Fix segfault in smbd_do_qfilepathinfo()
[4.11.2-11]
- resolves: #1778130 - Remove usage of DES encryption types in krb5
[4.11.2-10]
- resolves: #1790353 - Fix access check in DsRGetForestTrustInformation
- resolves: #1791209 - Fix CVE-2019-14907
[4.11.2-9]
- resolves: #1785134 - Fix libwbclient manual alternative settings
[4.11.2-8]
- resolves: #1781232 - Fix smbclient debug message
[4.11.2-7]
- related: #1637861 - Fix trust creation if weak crypto is disallowed
[4.11.2-6]
- resolves: #1637861 - Use GnuTLS for crypto
[4.11.2-4]
- related: #1754409 - Add patch to avoid overlinking with libnsl and libsocket
- related: #1754409 - Fix permissions for pidl
- related: #1754409 - Fix logrotate script
- related: #1754409 - Add missing README files
[4.11.2-3]
- related: #1754409 - Fix pidl packaging
[4.11.2-1]
- resolves: #1754409 - Rebase to Samba version 4.11.2
- resolves: #1776312 - Winbind is not restarted on upgrade
- resolves: #1764469 - Fix CVE-2019-10218
- resolves: #1746241 - Fix CVE-2019-10197
- resolves: #1710980 - Add support for KCM ccache in pam_winbind
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
ctdb
4.11.2-13.el8
ctdb-tests
4.11.2-13.el8
libsmbclient
4.11.2-13.el8
libsmbclient-devel
4.11.2-13.el8
libwbclient
4.11.2-13.el8
libwbclient-devel
4.11.2-13.el8
openchange
2.3-24.0.1.el8
python3-samba
4.11.2-13.el8
python3-samba-test
4.11.2-13.el8
samba
4.11.2-13.el8
samba-client
4.11.2-13.el8
samba-client-libs
4.11.2-13.el8
samba-common
4.11.2-13.el8
samba-common-libs
4.11.2-13.el8
samba-common-tools
4.11.2-13.el8
samba-krb5-printing
4.11.2-13.el8
samba-libs
4.11.2-13.el8
samba-pidl
4.11.2-13.el8
samba-test
4.11.2-13.el8
samba-test-libs
4.11.2-13.el8
samba-winbind
4.11.2-13.el8
samba-winbind-clients
4.11.2-13.el8
samba-winbind-krb5-locator
4.11.2-13.el8
samba-winbind-modules
4.11.2-13.el8
Oracle Linux x86_64
ctdb
4.11.2-13.el8
ctdb-tests
4.11.2-13.el8
libsmbclient
4.11.2-13.el8
libsmbclient-devel
4.11.2-13.el8
libwbclient
4.11.2-13.el8
libwbclient-devel
4.11.2-13.el8
openchange
2.3-24.0.1.el8
python3-samba
4.11.2-13.el8
python3-samba-test
4.11.2-13.el8
samba
4.11.2-13.el8
samba-client
4.11.2-13.el8
samba-client-libs
4.11.2-13.el8
samba-common
4.11.2-13.el8
samba-common-libs
4.11.2-13.el8
samba-common-tools
4.11.2-13.el8
samba-krb5-printing
4.11.2-13.el8
samba-libs
4.11.2-13.el8
samba-pidl
4.11.2-13.el8
samba-test
4.11.2-13.el8
samba-test-libs
4.11.2-13.el8
samba-winbind
4.11.2-13.el8
samba-winbind-clients
4.11.2-13.el8
samba-winbind-krb5-locator
4.11.2-13.el8
samba-winbind-modules
4.11.2-13.el8
Связанные CVE
Связанные уязвимости
ELSA-2020-1084: samba security, bug fix, and enhancement update (MODERATE)
A flaw was found in samba versions 4.9.x up to 4.9.13, samba 4.10.x up to 4.10.8 and samba 4.11.x up to 4.11.0rc3, when certain parameters were set in the samba configuration file. An unauthenticated attacker could use this flaw to escape the shared directory and access the contents of directories outside the share.
A flaw was found in samba versions 4.9.x up to 4.9.13, samba 4.10.x up to 4.10.8 and samba 4.11.x up to 4.11.0rc3, when certain parameters were set in the samba configuration file. An unauthenticated attacker could use this flaw to escape the shared directory and access the contents of directories outside the share.
A flaw was found in samba versions 4.9.x up to 4.9.13, samba 4.10.x up to 4.10.8 and samba 4.11.x up to 4.11.0rc3, when certain parameters were set in the samba configuration file. An unauthenticated attacker could use this flaw to escape the shared directory and access the contents of directories outside the share.