Описание
Security update for samba
This update for samba fixes the following issues:
Security issue fixed:
- CVE-2019-3880: Save registry file outside share as unprivileged user (bsc#1131060).
Non-security issue fixed:
- Backport changes to support quotas with SMB2 (bsc#1106119).
Список пакетов
SUSE Linux Enterprise High Availability Extension 12
ctdb-4.2.4-18.52.1
SUSE Linux Enterprise Server 12-LTSS
ctdb-4.2.4-18.52.1
libdcerpc-binding0-4.2.4-18.52.1
libdcerpc-binding0-32bit-4.2.4-18.52.1
libdcerpc0-4.2.4-18.52.1
libdcerpc0-32bit-4.2.4-18.52.1
libgensec0-4.2.4-18.52.1
libgensec0-32bit-4.2.4-18.52.1
libndr-krb5pac0-4.2.4-18.52.1
libndr-krb5pac0-32bit-4.2.4-18.52.1
libndr-nbt0-4.2.4-18.52.1
libndr-nbt0-32bit-4.2.4-18.52.1
libndr-standard0-4.2.4-18.52.1
libndr-standard0-32bit-4.2.4-18.52.1
libndr0-4.2.4-18.52.1
libndr0-32bit-4.2.4-18.52.1
libnetapi0-4.2.4-18.52.1
libnetapi0-32bit-4.2.4-18.52.1
libregistry0-4.2.4-18.52.1
libsamba-credentials0-4.2.4-18.52.1
libsamba-credentials0-32bit-4.2.4-18.52.1
libsamba-hostconfig0-4.2.4-18.52.1
libsamba-hostconfig0-32bit-4.2.4-18.52.1
libsamba-passdb0-4.2.4-18.52.1
libsamba-passdb0-32bit-4.2.4-18.52.1
libsamba-util0-4.2.4-18.52.1
libsamba-util0-32bit-4.2.4-18.52.1
libsamdb0-4.2.4-18.52.1
libsamdb0-32bit-4.2.4-18.52.1
libsmbclient-raw0-4.2.4-18.52.1
libsmbclient-raw0-32bit-4.2.4-18.52.1
libsmbclient0-4.2.4-18.52.1
libsmbclient0-32bit-4.2.4-18.52.1
libsmbconf0-4.2.4-18.52.1
libsmbconf0-32bit-4.2.4-18.52.1
libsmbldap0-4.2.4-18.52.1
libsmbldap0-32bit-4.2.4-18.52.1
libtevent-util0-4.2.4-18.52.1
libtevent-util0-32bit-4.2.4-18.52.1
libwbclient0-4.2.4-18.52.1
libwbclient0-32bit-4.2.4-18.52.1
samba-4.2.4-18.52.1
samba-32bit-4.2.4-18.52.1
samba-client-4.2.4-18.52.1
samba-client-32bit-4.2.4-18.52.1
samba-doc-4.2.4-18.52.1
samba-libs-4.2.4-18.52.1
samba-libs-32bit-4.2.4-18.52.1
samba-winbind-4.2.4-18.52.1
samba-winbind-32bit-4.2.4-18.52.1
Ссылки
- Link for SUSE-SU-2019:1194-1
- E-Mail link for SUSE-SU-2019:1194-1
- SUSE Security Ratings
- SUSE Bug 1106119
- SUSE Bug 1131060
- SUSE CVE CVE-2019-3880 page
Описание
A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. An unprivileged attacker could use this flaw to create a new registry hive file anywhere they have unix permissions which could lead to creation of a new file in the Samba share. Versions before 4.8.11, 4.9.6 and 4.10.2 are vulnerable.
Затронутые продукты
SUSE Linux Enterprise High Availability Extension 12:ctdb-4.2.4-18.52.1
SUSE Linux Enterprise Server 12-LTSS:ctdb-4.2.4-18.52.1
SUSE Linux Enterprise Server 12-LTSS:libdcerpc-binding0-32bit-4.2.4-18.52.1
SUSE Linux Enterprise Server 12-LTSS:libdcerpc-binding0-4.2.4-18.52.1
Ссылки
- CVE-2019-3880
- SUSE Bug 1131060
- SUSE Bug 1139519