Описание
Security update for samba
This update for samba fixes the following issues:
- CVE-2020-10745: Fixed an issue which parsing and packing of NBT and DNS packets containing dots could potentially have consumed excessive CPU (bsc#1173160).
Список пакетов
SUSE Linux Enterprise Point of Sale 11 SP3
ldapsmb-1.34b-94.26.1
libldb1-3.6.3-94.26.1
libsmbclient0-3.6.3-94.26.1
libtalloc2-3.6.3-94.26.1
libtdb1-3.6.3-94.26.1
libtevent0-3.6.3-94.26.1
libwbclient0-3.6.3-94.26.1
samba-3.6.3-94.26.1
samba-client-3.6.3-94.26.1
samba-doc-3.6.3-94.26.1
samba-krb-printing-3.6.3-94.26.1
samba-winbind-3.6.3-94.26.1
SUSE Linux Enterprise Server 11 SP4-LTSS
ldapsmb-1.34b-94.26.1
libldb1-3.6.3-94.26.1
libsmbclient0-3.6.3-94.26.1
libsmbclient0-32bit-3.6.3-94.26.1
libtalloc2-3.6.3-94.26.1
libtalloc2-32bit-3.6.3-94.26.1
libtdb1-3.6.3-94.26.1
libtdb1-32bit-3.6.3-94.26.1
libtevent0-3.6.3-94.26.1
libtevent0-32bit-3.6.3-94.26.1
libwbclient0-3.6.3-94.26.1
libwbclient0-32bit-3.6.3-94.26.1
samba-3.6.3-94.26.1
samba-32bit-3.6.3-94.26.1
samba-client-3.6.3-94.26.1
samba-client-32bit-3.6.3-94.26.1
samba-doc-3.6.3-94.26.1
samba-krb-printing-3.6.3-94.26.1
samba-winbind-3.6.3-94.26.1
samba-winbind-32bit-3.6.3-94.26.1
Ссылки
- Link for SUSE-SU-2020:14437-1
- E-Mail link for SUSE-SU-2020:14437-1
- SUSE Security Ratings
- SUSE Bug 1173160
- SUSE CVE CVE-2020-10745 page
Описание
A flaw was found in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4 in the way it processed NetBios over TCP/IP. This flaw allows a remote attacker could to cause the Samba server to consume excessive CPU use, resulting in a denial of service. This highest threat from this vulnerability is to system availability.
Затронутые продукты
SUSE Linux Enterprise Point of Sale 11 SP3:ldapsmb-1.34b-94.26.1
SUSE Linux Enterprise Point of Sale 11 SP3:libldb1-3.6.3-94.26.1
SUSE Linux Enterprise Point of Sale 11 SP3:libsmbclient0-3.6.3-94.26.1
SUSE Linux Enterprise Point of Sale 11 SP3:libtalloc2-3.6.3-94.26.1
Ссылки
- CVE-2020-10745
- SUSE Bug 1173160