Описание
Recommended update for samba
This update for samba fixes the following issues:
The username map advice from the CVE-2020-25717 advisory note has undesired side effects for the local nt token. Fallback to a SID/UID based mapping if the name based lookup fails (bsc#1192849).
Список пакетов
Image SLES12-SP5-Azure-BYOS
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-Azure-Basic-On-Demand
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-Azure-HPC-BYOS
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-Azure-HPC-On-Demand
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-Azure-SAP-BYOS
ctdb-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-Azure-SAP-On-Demand
ctdb-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-Azure-Standard-On-Demand
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-EC2-BYOS
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-EC2-ECS-On-Demand
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-EC2-On-Demand
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-EC2-SAP-BYOS
ctdb-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-EC2-SAP-On-Demand
ctdb-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-GCE-BYOS
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-GCE-On-Demand
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-GCE-SAP-BYOS
ctdb-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-GCE-SAP-On-Demand
ctdb-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
ctdb-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
ctdb-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
SUSE Linux Enterprise High Availability Extension 12 SP5
ctdb-4.10.18+git.344.93a2ffaacec-3.44.2
SUSE Linux Enterprise Server 12 SP5
libdcerpc-binding0-4.10.18+git.344.93a2ffaacec-3.44.2
libdcerpc-binding0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libdcerpc0-4.10.18+git.344.93a2ffaacec-3.44.2
libdcerpc0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-krb5pac0-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-krb5pac0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-nbt0-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-nbt0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-standard0-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-standard0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libndr0-4.10.18+git.344.93a2ffaacec-3.44.2
libndr0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libnetapi0-4.10.18+git.344.93a2ffaacec-3.44.2
libnetapi0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-credentials0-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-credentials0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-errors0-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-errors0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-hostconfig0-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-hostconfig0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-passdb0-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-passdb0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-util0-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-util0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsamdb0-4.10.18+git.344.93a2ffaacec-3.44.2
libsamdb0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsmbclient0-4.10.18+git.344.93a2ffaacec-3.44.2
libsmbclient0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsmbconf0-4.10.18+git.344.93a2ffaacec-3.44.2
libsmbconf0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsmbldap2-4.10.18+git.344.93a2ffaacec-3.44.2
libsmbldap2-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libtevent-util0-4.10.18+git.344.93a2ffaacec-3.44.2
libtevent-util0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libwbclient0-4.10.18+git.344.93a2ffaacec-3.44.2
libwbclient0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
samba-4.10.18+git.344.93a2ffaacec-3.44.2
samba-client-4.10.18+git.344.93a2ffaacec-3.44.2
samba-client-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
samba-doc-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-python3-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-python3-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
samba-winbind-4.10.18+git.344.93a2ffaacec-3.44.2
samba-winbind-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libdcerpc-binding0-4.10.18+git.344.93a2ffaacec-3.44.2
libdcerpc-binding0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libdcerpc0-4.10.18+git.344.93a2ffaacec-3.44.2
libdcerpc0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-krb5pac0-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-krb5pac0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-nbt0-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-nbt0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-standard0-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-standard0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libndr0-4.10.18+git.344.93a2ffaacec-3.44.2
libndr0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libnetapi0-4.10.18+git.344.93a2ffaacec-3.44.2
libnetapi0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-credentials0-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-credentials0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-errors0-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-errors0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-hostconfig0-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-hostconfig0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-passdb0-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-passdb0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-util0-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-util0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsamdb0-4.10.18+git.344.93a2ffaacec-3.44.2
libsamdb0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsmbclient0-4.10.18+git.344.93a2ffaacec-3.44.2
libsmbclient0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsmbconf0-4.10.18+git.344.93a2ffaacec-3.44.2
libsmbconf0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libsmbldap2-4.10.18+git.344.93a2ffaacec-3.44.2
libsmbldap2-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libtevent-util0-4.10.18+git.344.93a2ffaacec-3.44.2
libtevent-util0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
libwbclient0-4.10.18+git.344.93a2ffaacec-3.44.2
libwbclient0-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
samba-4.10.18+git.344.93a2ffaacec-3.44.2
samba-client-4.10.18+git.344.93a2ffaacec-3.44.2
samba-client-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
samba-doc-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-python3-4.10.18+git.344.93a2ffaacec-3.44.2
samba-libs-python3-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
samba-winbind-4.10.18+git.344.93a2ffaacec-3.44.2
samba-winbind-32bit-4.10.18+git.344.93a2ffaacec-3.44.2
SUSE Linux Enterprise Software Development Kit 12 SP5
libndr-devel-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-krb5pac-devel-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-nbt-devel-4.10.18+git.344.93a2ffaacec-3.44.2
libndr-standard-devel-4.10.18+git.344.93a2ffaacec-3.44.2
libsamba-util-devel-4.10.18+git.344.93a2ffaacec-3.44.2
libsmbclient-devel-4.10.18+git.344.93a2ffaacec-3.44.2
libwbclient-devel-4.10.18+git.344.93a2ffaacec-3.44.2
samba-core-devel-4.10.18+git.344.93a2ffaacec-3.44.2
Ссылки
- Link for SUSE-RU-2021:4095-1
- E-Mail link for SUSE-RU-2021:4095-1
- SUSE Security Ratings
- SUSE Bug 1192849
- SUSE CVE CVE-2020-25717 page
Описание
A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.
Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-Azure-HPC-BYOS:samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Image SLES12-SP5-Azure-HPC-On-Demand:samba-libs-4.10.18+git.344.93a2ffaacec-3.44.2
Ссылки
- CVE-2020-25717
- SUSE Bug 1192284
- SUSE Bug 1192505
- SUSE Bug 1192601
- SUSE Bug 1192849
- SUSE Bug 1193011
- SUSE Bug 1194049
- SUSE Bug 1194307
- SUSE Bug 1195815
- SUSE Bug 1196344
- SUSE Bug 1196717
- SUSE Bug 1196920
- SUSE Bug 1205061