ELSA-2020-3981

Опубликовано: 06 окт. 2020

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2020-3981: samba security, bug fix, and enhancement update (MODERATE)

[4.10-16-5]

related: #1785121 - Add missing RPM Requires

[4.10.16-2]

resolves: #1828354 - add additioanl hostnames to the keytab
resolves: #1836427 - add dnshostname option net-ads-join

[4.10.16-1]

related: #1785121 - Rebase to version 4.10.16

[4.10.15-5]

resolves: #1831986 - Fix gencache for normal users

[4.10.15-4]

resolves: #1813017 - Fix smbclient log to file

[4.10.15-3]

Removed patch for #1634057

[4.10.15-2]

resolves: #1825505 - Compilation of samba sources fails on RHEL

[4.10.15-1]

related: #1785121 - Rebase to version 4.10.15
resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
resolves: #1801496 - Add missing ctdb directories

[4.10.13-2]

resolves: #1810511 - Fix net-ads-keytab-create to include UPN

[4.10.13-1]

resolves: #1785121 - Rebase to vesion 4.10.13
resolves: #1791208 - Fix CVE-2019-14907
resolves: #1737888 - Fix manual libwbclient alternative settings
resolves: #1634057 - Return correct stat for SMB1 with POSIX extensions

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

ctdb

4.10.16-5.el7

ctdb-tests

4.10.16-5.el7

libsmbclient

4.10.16-5.el7

libsmbclient-devel

4.10.16-5.el7

libwbclient

4.10.16-5.el7

libwbclient-devel

4.10.16-5.el7

samba

4.10.16-5.el7

samba-client

4.10.16-5.el7

samba-client-libs

4.10.16-5.el7

samba-common

4.10.16-5.el7

samba-common-libs

4.10.16-5.el7

samba-common-tools

4.10.16-5.el7

samba-dc

4.10.16-5.el7

samba-dc-libs

4.10.16-5.el7

samba-devel

4.10.16-5.el7

samba-krb5-printing

4.10.16-5.el7

samba-libs

4.10.16-5.el7

samba-pidl

4.10.16-5.el7

samba-python

4.10.16-5.el7

samba-python-test

4.10.16-5.el7

samba-test

4.10.16-5.el7

samba-test-libs

4.10.16-5.el7

samba-winbind

4.10.16-5.el7

samba-winbind-clients

4.10.16-5.el7

samba-winbind-krb5-locator

4.10.16-5.el7

samba-winbind-modules

4.10.16-5.el7

Oracle Linux x86_64

ctdb

4.10.16-5.el7

ctdb-tests

4.10.16-5.el7

libsmbclient

4.10.16-5.el7

libsmbclient-devel

4.10.16-5.el7

libwbclient

4.10.16-5.el7

libwbclient-devel

4.10.16-5.el7

samba

4.10.16-5.el7

samba-client

4.10.16-5.el7

samba-client-libs

4.10.16-5.el7

samba-common

4.10.16-5.el7

samba-common-libs

4.10.16-5.el7

samba-common-tools

4.10.16-5.el7

samba-dc

4.10.16-5.el7

samba-dc-libs

4.10.16-5.el7

samba-devel

4.10.16-5.el7

samba-krb5-printing

4.10.16-5.el7

samba-libs

4.10.16-5.el7

samba-pidl

4.10.16-5.el7

samba-python

4.10.16-5.el7

samba-python-test

4.10.16-5.el7

samba-test

4.10.16-5.el7

samba-test-libs

4.10.16-5.el7

samba-vfs-glusterfs

4.10.16-5.el7

samba-winbind

4.10.16-5.el7

samba-winbind-clients

4.10.16-5.el7

samba-winbind-krb5-locator

4.10.16-5.el7

samba-winbind-modules

4.10.16-5.el7

Связанные CVE

CVE-2019-14907

Ссылки на источники

Связанные уязвимости

CVE-2019-14907

CVSS3: 6.5

ubuntu

около 6 лет назад

All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an issue where if it is set with "log level = 3" (or above) then the string obtained from the client, after a failed character conversion, is printed. Such strings can be provided during the NTLMSSP authentication exchange. In the Samba AD DC in particular, this may cause a long-lived process(such as the RPC server) to terminate. (In the file server case, the most likely target, smbd, operates as process-per-client and so a crash there is harmless).