SUSE-SU-2017:2715-1

Опубликовано: 12 окт. 2017

Источник: suse-cvrf

Описание

Security update for samba

This update for samba fixes several issues.

These security issues were fixed:

CVE-2017-12163: Prevent client short SMB1 write from writing server memory to file, leaking information from the server to the client (bsc#1058624)
CVE-2017-12150: Always enforce smb signing when it is configured (bsc#1058622)

This non-security issue was fixed:

Fix error where short name length was read as 2 bytes, should be 1 (bsc#1042419).

Список пакетов

SUSE Linux Enterprise Point of Sale 11 SP3

ldapsmb-1.34b-94.5.1

libldb1-3.6.3-94.5.1

libsmbclient0-3.6.3-94.5.1

libtalloc2-3.6.3-94.5.1

libtdb1-3.6.3-94.5.1

libtevent0-3.6.3-94.5.1

libwbclient0-3.6.3-94.5.1

samba-3.6.3-94.5.1

samba-client-3.6.3-94.5.1

samba-doc-3.6.3-94.5.1

samba-krb-printing-3.6.3-94.5.1

samba-winbind-3.6.3-94.5.1

SUSE Linux Enterprise Server 11 SP3-LTSS

ldapsmb-1.34b-94.5.1

libldb1-3.6.3-94.5.1

libsmbclient0-3.6.3-94.5.1

libsmbclient0-32bit-3.6.3-94.5.1

libtalloc2-3.6.3-94.5.1

libtalloc2-32bit-3.6.3-94.5.1

libtdb1-3.6.3-94.5.1

libtdb1-32bit-3.6.3-94.5.1

libtevent0-3.6.3-94.5.1

libtevent0-32bit-3.6.3-94.5.1

libwbclient0-3.6.3-94.5.1

libwbclient0-32bit-3.6.3-94.5.1

samba-3.6.3-94.5.1

samba-32bit-3.6.3-94.5.1

samba-client-3.6.3-94.5.1

samba-client-32bit-3.6.3-94.5.1

samba-doc-3.6.3-94.5.1

samba-krb-printing-3.6.3-94.5.1

samba-winbind-3.6.3-94.5.1

samba-winbind-32bit-3.6.3-94.5.1

SUSE Linux Enterprise Server 11 SP3-TERADATA

ldapsmb-1.34b-94.5.1

libldb1-3.6.3-94.5.1

libsmbclient0-3.6.3-94.5.1

libsmbclient0-32bit-3.6.3-94.5.1

libtalloc2-3.6.3-94.5.1

libtalloc2-32bit-3.6.3-94.5.1

libtdb1-3.6.3-94.5.1

libtdb1-32bit-3.6.3-94.5.1

libtevent0-3.6.3-94.5.1

libtevent0-32bit-3.6.3-94.5.1

libwbclient0-3.6.3-94.5.1

libwbclient0-32bit-3.6.3-94.5.1

samba-3.6.3-94.5.1

samba-32bit-3.6.3-94.5.1

samba-client-3.6.3-94.5.1

samba-client-32bit-3.6.3-94.5.1

samba-doc-3.6.3-94.5.1

samba-krb-printing-3.6.3-94.5.1

samba-winbind-3.6.3-94.5.1

samba-winbind-32bit-3.6.3-94.5.1

SUSE Linux Enterprise Server 11 SP4

ldapsmb-1.34b-94.5.1

libldb1-3.6.3-94.5.1

libsmbclient0-3.6.3-94.5.1

libsmbclient0-32bit-3.6.3-94.5.1

libsmbclient0-x86-3.6.3-94.5.1

libtalloc2-3.6.3-94.5.1

libtalloc2-32bit-3.6.3-94.5.1

libtalloc2-x86-3.6.3-94.5.1

libtdb1-3.6.3-94.5.1

libtdb1-32bit-3.6.3-94.5.1

libtdb1-x86-3.6.3-94.5.1

libtevent0-3.6.3-94.5.1

libtevent0-32bit-3.6.3-94.5.1

libtevent0-x86-3.6.3-94.5.1

libwbclient0-3.6.3-94.5.1

libwbclient0-32bit-3.6.3-94.5.1

libwbclient0-x86-3.6.3-94.5.1

samba-3.6.3-94.5.1

samba-32bit-3.6.3-94.5.1

samba-client-3.6.3-94.5.1

samba-client-32bit-3.6.3-94.5.1

samba-client-x86-3.6.3-94.5.1

samba-doc-3.6.3-94.5.1

samba-krb-printing-3.6.3-94.5.1

samba-winbind-3.6.3-94.5.1

samba-winbind-32bit-3.6.3-94.5.1

samba-winbind-x86-3.6.3-94.5.1

samba-x86-3.6.3-94.5.1

SUSE Linux Enterprise Server for SAP Applications 11 SP4

ldapsmb-1.34b-94.5.1

libldb1-3.6.3-94.5.1

libsmbclient0-3.6.3-94.5.1

libsmbclient0-32bit-3.6.3-94.5.1

libsmbclient0-x86-3.6.3-94.5.1

libtalloc2-3.6.3-94.5.1

libtalloc2-32bit-3.6.3-94.5.1

libtalloc2-x86-3.6.3-94.5.1

libtdb1-3.6.3-94.5.1

libtdb1-32bit-3.6.3-94.5.1

libtdb1-x86-3.6.3-94.5.1

libtevent0-3.6.3-94.5.1

libtevent0-32bit-3.6.3-94.5.1

libtevent0-x86-3.6.3-94.5.1

libwbclient0-3.6.3-94.5.1

libwbclient0-32bit-3.6.3-94.5.1

libwbclient0-x86-3.6.3-94.5.1

samba-3.6.3-94.5.1

samba-32bit-3.6.3-94.5.1

samba-client-3.6.3-94.5.1

samba-client-32bit-3.6.3-94.5.1

samba-client-x86-3.6.3-94.5.1

samba-doc-3.6.3-94.5.1

samba-krb-printing-3.6.3-94.5.1

samba-winbind-3.6.3-94.5.1

samba-winbind-32bit-3.6.3-94.5.1

samba-winbind-x86-3.6.3-94.5.1

samba-x86-3.6.3-94.5.1

SUSE Linux Enterprise Software Development Kit 11 SP4

libldb-devel-3.6.3-94.5.1

libnetapi-devel-3.6.3-94.5.1

libnetapi0-3.6.3-94.5.1

libsmbclient-devel-3.6.3-94.5.1

libsmbsharemodes-devel-3.6.3-94.5.1

libsmbsharemodes0-3.6.3-94.5.1

libtalloc-devel-3.6.3-94.5.1

libtdb-devel-3.6.3-94.5.1

libtevent-devel-3.6.3-94.5.1

libwbclient-devel-3.6.3-94.5.1

samba-devel-3.6.3-94.5.1

samba-test-3.6.3-94.5.1

Ссылки

https://www.suse.com/support/update/announcement/2017/suse-su-20172715-1/
Link for SUSE-SU-2017:2715-1
https://lists.suse.com/pipermail/sle-security-updates/2017-October/003292.html
E-Mail link for SUSE-SU-2017:2715-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1042419
SUSE Bug 1042419
https://bugzilla.suse.com/1058622
SUSE Bug 1058622
https://bugzilla.suse.com/1058624
SUSE Bug 1058624
https://www.suse.com/security/cve/CVE-2017-12150/
SUSE CVE CVE-2017-12150 page
https://www.suse.com/security/cve/CVE-2017-12163/
SUSE CVE CVE-2017-12163 page

Описание

It was found that samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8 did not enforce "SMB signing" when certain configuration options were enabled. A remote attacker could launch a man-in-the-middle attack and retrieve information in plain-text.

Затронутые продукты

SUSE Linux Enterprise Point of Sale 11 SP3:ldapsmb-1.34b-94.5.1

SUSE Linux Enterprise Point of Sale 11 SP3:libldb1-3.6.3-94.5.1

SUSE Linux Enterprise Point of Sale 11 SP3:libsmbclient0-3.6.3-94.5.1

SUSE Linux Enterprise Point of Sale 11 SP3:libtalloc2-3.6.3-94.5.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-12150.html
CVE-2017-12150
https://bugzilla.suse.com/1058622
SUSE Bug 1058622

Описание

An information leak flaw was found in the way SMB1 protocol was implemented by Samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8. A malicious client could use this flaw to dump server memory contents to a file on the samba share or to a shared printer, though the exact area of server memory cannot be controlled by the attacker.

Затронутые продукты

SUSE Linux Enterprise Point of Sale 11 SP3:ldapsmb-1.34b-94.5.1

SUSE Linux Enterprise Point of Sale 11 SP3:libldb1-3.6.3-94.5.1

SUSE Linux Enterprise Point of Sale 11 SP3:libsmbclient0-3.6.3-94.5.1

SUSE Linux Enterprise Point of Sale 11 SP3:libtalloc2-3.6.3-94.5.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-12163.html
CVE-2017-12163
https://bugzilla.suse.com/1058410
SUSE Bug 1058410
https://bugzilla.suse.com/1058624
SUSE Bug 1058624

SUSE-SU-2017:2715-1

Описание

Список пакетов

SUSE Linux Enterprise Point of Sale 11 SP3

SUSE Linux Enterprise Server 11 SP3-LTSS

SUSE Linux Enterprise Server 11 SP3-TERADATA

SUSE Linux Enterprise Server 11 SP4

SUSE Linux Enterprise Server for SAP Applications 11 SP4

SUSE Linux Enterprise Software Development Kit 11 SP4

Ссылки

Уязвимость: CVE-2017-12150

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2017-12163

Описание

Затронутые продукты

Ссылки