Описание
Security update for samba
This update for samba fixes the following issues:
- CVE-2020-14383: An authenticated user can crash the DCE/RPC DNS with easily crafted records (bsc#1177613).
- CVE-2020-14323: Unprivileged user can crash winbind (bsc#1173994).
- CVE-2020-14318: Missing permissions check in SMB1/2/3 ChangeNotify (bsc#1173902).
Список пакетов
Image SLES12-SP5-Azure-BYOS
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-Basic-On-Demand
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-HPC-BYOS
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-HPC-On-Demand
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-SAP-BYOS
ctdb-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-SAP-On-Demand
ctdb-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-Standard-On-Demand
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-EC2-BYOS
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-EC2-ECS-On-Demand
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-EC2-On-Demand
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-EC2-SAP-BYOS
ctdb-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-EC2-SAP-On-Demand
ctdb-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-GCE-BYOS
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-GCE-On-Demand
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-GCE-SAP-BYOS
ctdb-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-GCE-SAP-On-Demand
ctdb-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-OCI-BYOS-BYOS
libdcerpc-binding0-4.10.18+git.219.1d732314d96-3.20.1
libdcerpc0-4.10.18+git.219.1d732314d96-3.20.1
libndr-krb5pac0-4.10.18+git.219.1d732314d96-3.20.1
libndr-nbt0-4.10.18+git.219.1d732314d96-3.20.1
libndr-standard0-4.10.18+git.219.1d732314d96-3.20.1
libndr0-4.10.18+git.219.1d732314d96-3.20.1
libnetapi0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-credentials0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-errors0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-hostconfig0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-passdb0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-util0-4.10.18+git.219.1d732314d96-3.20.1
libsamdb0-4.10.18+git.219.1d732314d96-3.20.1
libsmbconf0-4.10.18+git.219.1d732314d96-3.20.1
libsmbldap2-4.10.18+git.219.1d732314d96-3.20.1
libtevent-util0-4.10.18+git.219.1d732314d96-3.20.1
libwbclient0-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-OCI-BYOS-SAP-BYOS
ctdb-4.10.18+git.219.1d732314d96-3.20.1
libdcerpc-binding0-4.10.18+git.219.1d732314d96-3.20.1
libdcerpc0-4.10.18+git.219.1d732314d96-3.20.1
libndr-krb5pac0-4.10.18+git.219.1d732314d96-3.20.1
libndr-nbt0-4.10.18+git.219.1d732314d96-3.20.1
libndr-standard0-4.10.18+git.219.1d732314d96-3.20.1
libndr0-4.10.18+git.219.1d732314d96-3.20.1
libnetapi0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-credentials0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-errors0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-hostconfig0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-passdb0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-util0-4.10.18+git.219.1d732314d96-3.20.1
libsamdb0-4.10.18+git.219.1d732314d96-3.20.1
libsmbconf0-4.10.18+git.219.1d732314d96-3.20.1
libsmbldap2-4.10.18+git.219.1d732314d96-3.20.1
libtevent-util0-4.10.18+git.219.1d732314d96-3.20.1
libwbclient0-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
ctdb-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
ctdb-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
SUSE Linux Enterprise High Availability Extension 12 SP5
ctdb-4.10.18+git.219.1d732314d96-3.20.1
SUSE Linux Enterprise Server 12 SP5
libdcerpc-binding0-4.10.18+git.219.1d732314d96-3.20.1
libdcerpc-binding0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libdcerpc0-4.10.18+git.219.1d732314d96-3.20.1
libdcerpc0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libndr-krb5pac0-4.10.18+git.219.1d732314d96-3.20.1
libndr-krb5pac0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libndr-nbt0-4.10.18+git.219.1d732314d96-3.20.1
libndr-nbt0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libndr-standard0-4.10.18+git.219.1d732314d96-3.20.1
libndr-standard0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libndr0-4.10.18+git.219.1d732314d96-3.20.1
libndr0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libnetapi0-4.10.18+git.219.1d732314d96-3.20.1
libnetapi0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsamba-credentials0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-credentials0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsamba-errors0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-errors0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsamba-hostconfig0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-hostconfig0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsamba-passdb0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-passdb0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsamba-util0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-util0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsamdb0-4.10.18+git.219.1d732314d96-3.20.1
libsamdb0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsmbclient0-4.10.18+git.219.1d732314d96-3.20.1
libsmbclient0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsmbconf0-4.10.18+git.219.1d732314d96-3.20.1
libsmbconf0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsmbldap2-4.10.18+git.219.1d732314d96-3.20.1
libsmbldap2-32bit-4.10.18+git.219.1d732314d96-3.20.1
libtevent-util0-4.10.18+git.219.1d732314d96-3.20.1
libtevent-util0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libwbclient0-4.10.18+git.219.1d732314d96-3.20.1
libwbclient0-32bit-4.10.18+git.219.1d732314d96-3.20.1
samba-4.10.18+git.219.1d732314d96-3.20.1
samba-client-4.10.18+git.219.1d732314d96-3.20.1
samba-client-32bit-4.10.18+git.219.1d732314d96-3.20.1
samba-doc-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-32bit-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-python3-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-python3-32bit-4.10.18+git.219.1d732314d96-3.20.1
samba-winbind-4.10.18+git.219.1d732314d96-3.20.1
samba-winbind-32bit-4.10.18+git.219.1d732314d96-3.20.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libdcerpc-binding0-4.10.18+git.219.1d732314d96-3.20.1
libdcerpc-binding0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libdcerpc0-4.10.18+git.219.1d732314d96-3.20.1
libdcerpc0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libndr-krb5pac0-4.10.18+git.219.1d732314d96-3.20.1
libndr-krb5pac0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libndr-nbt0-4.10.18+git.219.1d732314d96-3.20.1
libndr-nbt0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libndr-standard0-4.10.18+git.219.1d732314d96-3.20.1
libndr-standard0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libndr0-4.10.18+git.219.1d732314d96-3.20.1
libndr0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libnetapi0-4.10.18+git.219.1d732314d96-3.20.1
libnetapi0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsamba-credentials0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-credentials0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsamba-errors0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-errors0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsamba-hostconfig0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-hostconfig0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsamba-passdb0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-passdb0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsamba-util0-4.10.18+git.219.1d732314d96-3.20.1
libsamba-util0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsamdb0-4.10.18+git.219.1d732314d96-3.20.1
libsamdb0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsmbclient0-4.10.18+git.219.1d732314d96-3.20.1
libsmbclient0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsmbconf0-4.10.18+git.219.1d732314d96-3.20.1
libsmbconf0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libsmbldap2-4.10.18+git.219.1d732314d96-3.20.1
libsmbldap2-32bit-4.10.18+git.219.1d732314d96-3.20.1
libtevent-util0-4.10.18+git.219.1d732314d96-3.20.1
libtevent-util0-32bit-4.10.18+git.219.1d732314d96-3.20.1
libwbclient0-4.10.18+git.219.1d732314d96-3.20.1
libwbclient0-32bit-4.10.18+git.219.1d732314d96-3.20.1
samba-4.10.18+git.219.1d732314d96-3.20.1
samba-client-4.10.18+git.219.1d732314d96-3.20.1
samba-client-32bit-4.10.18+git.219.1d732314d96-3.20.1
samba-doc-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-32bit-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-python3-4.10.18+git.219.1d732314d96-3.20.1
samba-libs-python3-32bit-4.10.18+git.219.1d732314d96-3.20.1
samba-winbind-4.10.18+git.219.1d732314d96-3.20.1
samba-winbind-32bit-4.10.18+git.219.1d732314d96-3.20.1
SUSE Linux Enterprise Software Development Kit 12 SP5
libndr-devel-4.10.18+git.219.1d732314d96-3.20.1
libndr-krb5pac-devel-4.10.18+git.219.1d732314d96-3.20.1
libndr-nbt-devel-4.10.18+git.219.1d732314d96-3.20.1
libndr-standard-devel-4.10.18+git.219.1d732314d96-3.20.1
libsamba-util-devel-4.10.18+git.219.1d732314d96-3.20.1
libsmbclient-devel-4.10.18+git.219.1d732314d96-3.20.1
libwbclient-devel-4.10.18+git.219.1d732314d96-3.20.1
samba-core-devel-4.10.18+git.219.1d732314d96-3.20.1
Ссылки
- Link for SUSE-SU-2020:3082-1
- E-Mail link for SUSE-SU-2020:3082-1
- SUSE Security Ratings
- SUSE Bug 1173902
- SUSE Bug 1173994
- SUSE Bug 1177613
- SUSE CVE CVE-2020-14318 page
- SUSE CVE CVE-2020-14323 page
- SUSE CVE CVE-2020-14383 page
Описание
A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and directory information which otherwise would be unavailable to the attacker.
Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-HPC-BYOS:samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-HPC-On-Demand:samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Ссылки
- CVE-2020-14318
- SUSE Bug 1173902
Описание
A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service.
Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-HPC-BYOS:samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-HPC-On-Demand:samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Ссылки
- CVE-2020-14323
- SUSE Bug 1173994
Описание
A flaw was found in samba's DNS server. An authenticated user could use this flaw to the RPC server to crash. This RPC server, which also serves protocols other than dnsserver, will be restarted after a short delay, but it is easy for an authenticated non administrative attacker to crash it again as soon as it returns. The Samba DNS server itself will continue to operate, but many RPC services will not.
Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-HPC-BYOS:samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Image SLES12-SP5-Azure-HPC-On-Demand:samba-libs-4.10.18+git.219.1d732314d96-3.20.1
Ссылки
- CVE-2020-14383
- SUSE Bug 1177613