RLSA-2023:2127

Опубликовано: 05 мая 2023

Источник: rocky

Оценка: Important

Описание

Important: samba security update

Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information.

Security Fix(es):

samba: RC4/HMAC-MD5 NetLogon Secure Channel is weak and should be avoided (CVE-2022-38023)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

Rocky Linux 9

Наименование	Архитектура	Релиз	RPM
libsmbclient	aarch64	103.el9_1	libsmbclient-4.16.4-103.el9_1.aarch64.rpm
libwbclient	aarch64	103.el9_1	libwbclient-4.16.4-103.el9_1.aarch64.rpm
python3-samba	aarch64	103.el9_1	python3-samba-4.16.4-103.el9_1.aarch64.rpm
samba	aarch64	103.el9_1	samba-4.16.4-103.el9_1.aarch64.rpm
samba-client-libs	aarch64	103.el9_1	samba-client-libs-4.16.4-103.el9_1.aarch64.rpm
samba-common	noarch	103.el9_1	samba-common-4.16.4-103.el9_1.noarch.rpm
samba-common-libs	aarch64	103.el9_1	samba-common-libs-4.16.4-103.el9_1.aarch64.rpm
samba-common-tools	aarch64	103.el9_1	samba-common-tools-4.16.4-103.el9_1.aarch64.rpm
samba-libs	aarch64	103.el9_1	samba-libs-4.16.4-103.el9_1.aarch64.rpm
samba-winbind	aarch64	103.el9_1	samba-winbind-4.16.4-103.el9_1.aarch64.rpm

Показывать по

Связанные CVE

CVE-2022-38023

Ссылки на источники

Исправления

https://bugzilla.redhat.com/show_bug.cgi?id=2154362
Red Hat - 2154362

Связанные уязвимости

CVE-2022-38023

CVSS3: 8.1

ubuntu

больше 2 лет назад