SUSE-RU-2021:4173-2

Опубликовано: 12 янв. 2022

Источник: suse-cvrf

Описание

Recommended update for samba

This update for samba fixes the following issues:

The username map advice from the CVE-2020-25717 advisory note has undesired side effects for the local nt token. Fallback to a SID/UID based mapping if the name based lookup fails (bsc#1192849).

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP2

libdcerpc-binding0-4.11.14+git.313.d4e302805e1-4.32.1

libdcerpc-binding0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libdcerpc-devel-4.11.14+git.313.d4e302805e1-4.32.1

libdcerpc-samr-devel-4.11.14+git.313.d4e302805e1-4.32.1

libdcerpc-samr0-4.11.14+git.313.d4e302805e1-4.32.1

libdcerpc0-4.11.14+git.313.d4e302805e1-4.32.1

libdcerpc0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libndr-devel-4.11.14+git.313.d4e302805e1-4.32.1

libndr-krb5pac-devel-4.11.14+git.313.d4e302805e1-4.32.1

libndr-krb5pac0-4.11.14+git.313.d4e302805e1-4.32.1

libndr-krb5pac0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libndr-nbt-devel-4.11.14+git.313.d4e302805e1-4.32.1

libndr-nbt0-4.11.14+git.313.d4e302805e1-4.32.1

libndr-nbt0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libndr-standard-devel-4.11.14+git.313.d4e302805e1-4.32.1

libndr-standard0-4.11.14+git.313.d4e302805e1-4.32.1

libndr-standard0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libndr0-4.11.14+git.313.d4e302805e1-4.32.1

libndr0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libnetapi-devel-4.11.14+git.313.d4e302805e1-4.32.1

libnetapi0-4.11.14+git.313.d4e302805e1-4.32.1

libnetapi0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-credentials-devel-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-credentials0-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-credentials0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-errors-devel-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-errors0-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-errors0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-hostconfig-devel-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-hostconfig0-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-hostconfig0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-passdb-devel-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-passdb0-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-passdb0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-policy-devel-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-policy-python3-devel-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-policy0-python3-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-util-devel-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-util0-4.11.14+git.313.d4e302805e1-4.32.1

libsamba-util0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libsamdb-devel-4.11.14+git.313.d4e302805e1-4.32.1

libsamdb0-4.11.14+git.313.d4e302805e1-4.32.1

libsamdb0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libsmbclient-devel-4.11.14+git.313.d4e302805e1-4.32.1

libsmbclient0-4.11.14+git.313.d4e302805e1-4.32.1

libsmbconf-devel-4.11.14+git.313.d4e302805e1-4.32.1

libsmbconf0-4.11.14+git.313.d4e302805e1-4.32.1

libsmbconf0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libsmbldap-devel-4.11.14+git.313.d4e302805e1-4.32.1

libsmbldap2-4.11.14+git.313.d4e302805e1-4.32.1

libsmbldap2-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libtevent-util-devel-4.11.14+git.313.d4e302805e1-4.32.1

libtevent-util0-4.11.14+git.313.d4e302805e1-4.32.1

libtevent-util0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

libwbclient-devel-4.11.14+git.313.d4e302805e1-4.32.1

libwbclient0-4.11.14+git.313.d4e302805e1-4.32.1

libwbclient0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

samba-4.11.14+git.313.d4e302805e1-4.32.1

samba-ceph-4.11.14+git.313.d4e302805e1-4.32.1

samba-client-4.11.14+git.313.d4e302805e1-4.32.1

samba-core-devel-4.11.14+git.313.d4e302805e1-4.32.1

samba-dsdb-modules-4.11.14+git.313.d4e302805e1-4.32.1

samba-libs-4.11.14+git.313.d4e302805e1-4.32.1

samba-libs-32bit-4.11.14+git.313.d4e302805e1-4.32.1

samba-libs-python3-4.11.14+git.313.d4e302805e1-4.32.1

samba-python3-4.11.14+git.313.d4e302805e1-4.32.1

samba-winbind-4.11.14+git.313.d4e302805e1-4.32.1

samba-winbind-32bit-4.11.14+git.313.d4e302805e1-4.32.1

SUSE Linux Enterprise Module for Python 2 15 SP2

samba-ad-dc-4.11.14+git.313.d4e302805e1-4.32.1

samba-dsdb-modules-4.11.14+git.313.d4e302805e1-4.32.1

Ссылки

https://www.suse.com/support/update/announcement/-2021-4173/suse-ru-20214173-2/
Link for SUSE-RU-2021:4173-2
https://lists.suse.com/pipermail/sle-updates/2022-January/021329.html
E-Mail link for SUSE-RU-2021:4173-2
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1192849
SUSE Bug 1192849
https://www.suse.com/security/cve/CVE-2020-25717/
SUSE CVE CVE-2020-25717 page

Описание

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.

Затронутые продукты

SUSE Linux Enterprise Module for Basesystem 15 SP2:libdcerpc-binding0-32bit-4.11.14+git.313.d4e302805e1-4.32.1

SUSE Linux Enterprise Module for Basesystem 15 SP2:libdcerpc-binding0-4.11.14+git.313.d4e302805e1-4.32.1

SUSE Linux Enterprise Module for Basesystem 15 SP2:libdcerpc-devel-4.11.14+git.313.d4e302805e1-4.32.1

SUSE Linux Enterprise Module for Basesystem 15 SP2:libdcerpc-samr-devel-4.11.14+git.313.d4e302805e1-4.32.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-25717.html
CVE-2020-25717
https://bugzilla.suse.com/1192284
SUSE Bug 1192284
https://bugzilla.suse.com/1192505
SUSE Bug 1192505
https://bugzilla.suse.com/1192601
SUSE Bug 1192601
https://bugzilla.suse.com/1192849
SUSE Bug 1192849
https://bugzilla.suse.com/1193011
SUSE Bug 1193011
https://bugzilla.suse.com/1194049
SUSE Bug 1194049
https://bugzilla.suse.com/1194307
SUSE Bug 1194307
https://bugzilla.suse.com/1195815
SUSE Bug 1195815
https://bugzilla.suse.com/1196344
SUSE Bug 1196344
https://bugzilla.suse.com/1196717
SUSE Bug 1196717
https://bugzilla.suse.com/1196920
SUSE Bug 1196920
https://bugzilla.suse.com/1205061
SUSE Bug 1205061

SUSE-RU-2021:4173-2

Описание

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP2

SUSE Linux Enterprise Module for Python 2 15 SP2

Ссылки

Уязвимость: CVE-2020-25717

Описание

Затронутые продукты

Ссылки