SUSE-SU-2018:3161-1

Опубликовано: 16 окт. 2018

Источник: suse-cvrf

Описание

Security update for samba

Samba was updated to 4.6.15, bringing bug and security fixes. (bsc#1110943)

Following security issues were fixed:

CVE-2018-10919: Fix unauthorized attribute access via searches. (bsc#1095057);

Non-security bugs fixed:

Fix ctdb_mutex_ceph_rados_helper deadlock (bsc#1102230).
Allow idmap_rid to have primary group other than 'Domain Users' (bsc#1087931).
winbind: avoid using fstrcpy in _dual_init_connection.
Fix ntlm authentications with 'winbind use default domain = yes' (bsc#1068059).

Список пакетов

SUSE Enterprise Storage 5

ctdb-4.6.16+git.124.aee309c5c18-3.32.1

samba-ceph-4.6.16+git.124.aee309c5c18-3.32.1

SUSE Linux Enterprise Desktop 12 SP3

libdcerpc-binding0-4.6.16+git.124.aee309c5c18-3.32.1

libdcerpc-binding0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libdcerpc0-4.6.16+git.124.aee309c5c18-3.32.1

libdcerpc0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libndr-krb5pac0-4.6.16+git.124.aee309c5c18-3.32.1

libndr-krb5pac0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libndr-nbt0-4.6.16+git.124.aee309c5c18-3.32.1

libndr-nbt0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libndr-standard0-4.6.16+git.124.aee309c5c18-3.32.1

libndr-standard0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libndr0-4.6.16+git.124.aee309c5c18-3.32.1

libndr0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libnetapi0-4.6.16+git.124.aee309c5c18-3.32.1

libnetapi0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-credentials0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-credentials0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-errors0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-errors0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-hostconfig0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-hostconfig0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-passdb0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-passdb0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-util0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-util0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamdb0-4.6.16+git.124.aee309c5c18-3.32.1

libsamdb0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsmbclient0-4.6.16+git.124.aee309c5c18-3.32.1

libsmbclient0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsmbconf0-4.6.16+git.124.aee309c5c18-3.32.1

libsmbconf0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsmbldap0-4.6.16+git.124.aee309c5c18-3.32.1

libsmbldap0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libtevent-util0-4.6.16+git.124.aee309c5c18-3.32.1

libtevent-util0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libwbclient0-4.6.16+git.124.aee309c5c18-3.32.1

libwbclient0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

samba-4.6.16+git.124.aee309c5c18-3.32.1

samba-client-4.6.16+git.124.aee309c5c18-3.32.1

samba-client-32bit-4.6.16+git.124.aee309c5c18-3.32.1

samba-doc-4.6.16+git.124.aee309c5c18-3.32.1

samba-libs-4.6.16+git.124.aee309c5c18-3.32.1

samba-libs-32bit-4.6.16+git.124.aee309c5c18-3.32.1

samba-winbind-4.6.16+git.124.aee309c5c18-3.32.1

samba-winbind-32bit-4.6.16+git.124.aee309c5c18-3.32.1

SUSE Linux Enterprise High Availability Extension 12 SP3

ctdb-4.6.16+git.124.aee309c5c18-3.32.1

SUSE Linux Enterprise Server 12 SP3

libdcerpc-binding0-4.6.16+git.124.aee309c5c18-3.32.1

libdcerpc-binding0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libdcerpc0-4.6.16+git.124.aee309c5c18-3.32.1

libdcerpc0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libndr-krb5pac0-4.6.16+git.124.aee309c5c18-3.32.1

libndr-krb5pac0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libndr-nbt0-4.6.16+git.124.aee309c5c18-3.32.1

libndr-nbt0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libndr-standard0-4.6.16+git.124.aee309c5c18-3.32.1

libndr-standard0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libndr0-4.6.16+git.124.aee309c5c18-3.32.1

libndr0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libnetapi0-4.6.16+git.124.aee309c5c18-3.32.1

libnetapi0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-credentials0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-credentials0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-errors0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-errors0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-hostconfig0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-hostconfig0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-passdb0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-passdb0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-util0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-util0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamdb0-4.6.16+git.124.aee309c5c18-3.32.1

libsamdb0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsmbclient0-4.6.16+git.124.aee309c5c18-3.32.1

libsmbclient0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsmbconf0-4.6.16+git.124.aee309c5c18-3.32.1

libsmbconf0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsmbldap0-4.6.16+git.124.aee309c5c18-3.32.1

libsmbldap0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libtevent-util0-4.6.16+git.124.aee309c5c18-3.32.1

libtevent-util0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libwbclient0-4.6.16+git.124.aee309c5c18-3.32.1

libwbclient0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

samba-4.6.16+git.124.aee309c5c18-3.32.1

samba-client-4.6.16+git.124.aee309c5c18-3.32.1

samba-client-32bit-4.6.16+git.124.aee309c5c18-3.32.1

samba-doc-4.6.16+git.124.aee309c5c18-3.32.1

samba-libs-4.6.16+git.124.aee309c5c18-3.32.1

samba-libs-32bit-4.6.16+git.124.aee309c5c18-3.32.1

samba-winbind-4.6.16+git.124.aee309c5c18-3.32.1

samba-winbind-32bit-4.6.16+git.124.aee309c5c18-3.32.1

SUSE Linux Enterprise Server for SAP Applications 12 SP3

libdcerpc-binding0-4.6.16+git.124.aee309c5c18-3.32.1

libdcerpc-binding0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libdcerpc0-4.6.16+git.124.aee309c5c18-3.32.1

libdcerpc0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libndr-krb5pac0-4.6.16+git.124.aee309c5c18-3.32.1

libndr-krb5pac0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libndr-nbt0-4.6.16+git.124.aee309c5c18-3.32.1

libndr-nbt0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libndr-standard0-4.6.16+git.124.aee309c5c18-3.32.1

libndr-standard0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libndr0-4.6.16+git.124.aee309c5c18-3.32.1

libndr0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libnetapi0-4.6.16+git.124.aee309c5c18-3.32.1

libnetapi0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-credentials0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-credentials0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-errors0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-errors0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-hostconfig0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-hostconfig0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-passdb0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-passdb0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-util0-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-util0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsamdb0-4.6.16+git.124.aee309c5c18-3.32.1

libsamdb0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsmbclient0-4.6.16+git.124.aee309c5c18-3.32.1

libsmbclient0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsmbconf0-4.6.16+git.124.aee309c5c18-3.32.1

libsmbconf0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libsmbldap0-4.6.16+git.124.aee309c5c18-3.32.1

libsmbldap0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libtevent-util0-4.6.16+git.124.aee309c5c18-3.32.1

libtevent-util0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

libwbclient0-4.6.16+git.124.aee309c5c18-3.32.1

libwbclient0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

samba-4.6.16+git.124.aee309c5c18-3.32.1

samba-client-4.6.16+git.124.aee309c5c18-3.32.1

samba-client-32bit-4.6.16+git.124.aee309c5c18-3.32.1

samba-doc-4.6.16+git.124.aee309c5c18-3.32.1

samba-libs-4.6.16+git.124.aee309c5c18-3.32.1

samba-libs-32bit-4.6.16+git.124.aee309c5c18-3.32.1

samba-winbind-4.6.16+git.124.aee309c5c18-3.32.1

samba-winbind-32bit-4.6.16+git.124.aee309c5c18-3.32.1

SUSE Linux Enterprise Software Development Kit 12 SP3

libndr-devel-4.6.16+git.124.aee309c5c18-3.32.1

libndr-krb5pac-devel-4.6.16+git.124.aee309c5c18-3.32.1

libndr-nbt-devel-4.6.16+git.124.aee309c5c18-3.32.1

libndr-standard-devel-4.6.16+git.124.aee309c5c18-3.32.1

libsamba-util-devel-4.6.16+git.124.aee309c5c18-3.32.1

libsmbclient-devel-4.6.16+git.124.aee309c5c18-3.32.1

libwbclient-devel-4.6.16+git.124.aee309c5c18-3.32.1

samba-core-devel-4.6.16+git.124.aee309c5c18-3.32.1

Ссылки

https://www.suse.com/support/update/announcement/2018/suse-su-20183161-1/
Link for SUSE-SU-2018:3161-1
https://lists.suse.com/pipermail/sle-security-updates/2018-October/004675.html
E-Mail link for SUSE-SU-2018:3161-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1068059
SUSE Bug 1068059
https://bugzilla.suse.com/1087931
SUSE Bug 1087931
https://bugzilla.suse.com/1095057
SUSE Bug 1095057
https://bugzilla.suse.com/1102230
SUSE Bug 1102230
https://bugzilla.suse.com/1110943
SUSE Bug 1110943
https://www.suse.com/security/cve/CVE-2018-10919/
SUSE CVE CVE-2018-10919 page

Описание

The Samba Active Directory LDAP server was vulnerable to an information disclosure flaw because of missing access control checks. An authenticated attacker could use this flaw to extract confidential attribute values using LDAP search expressions. Samba versions before 4.6.16, 4.7.9 and 4.8.4 are vulnerable.

Затронутые продукты

SUSE Enterprise Storage 5:ctdb-4.6.16+git.124.aee309c5c18-3.32.1

SUSE Enterprise Storage 5:samba-ceph-4.6.16+git.124.aee309c5c18-3.32.1

SUSE Linux Enterprise Desktop 12 SP3:libdcerpc-binding0-32bit-4.6.16+git.124.aee309c5c18-3.32.1

SUSE Linux Enterprise Desktop 12 SP3:libdcerpc-binding0-4.6.16+git.124.aee309c5c18-3.32.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-10919.html
CVE-2018-10919
https://bugzilla.suse.com/1095057
SUSE Bug 1095057
https://bugzilla.suse.com/1110943
SUSE Bug 1110943
https://bugzilla.suse.com/1209485
SUSE Bug 1209485

SUSE-SU-2018:3161-1

Описание

Список пакетов

SUSE Enterprise Storage 5

SUSE Linux Enterprise Desktop 12 SP3

SUSE Linux Enterprise High Availability Extension 12 SP3

SUSE Linux Enterprise Server 12 SP3

SUSE Linux Enterprise Server for SAP Applications 12 SP3

SUSE Linux Enterprise Software Development Kit 12 SP3

Ссылки

Уязвимость: CVE-2018-10919

Описание

Затронутые продукты

Ссылки