Описание
Security update for samba
This update for samba fixes the following issues:
- CVE-2020-14323: Unprivileged user can crash winbind (bsc#1173994).
- CVE-2020-14318: Missing permissions check in SMB1/2/3 ChangeNotify (bsc#1173902).
Список пакетов
SUSE Linux Enterprise High Availability Extension 12 SP2
ctdb-4.4.2-38.39.1
SUSE Linux Enterprise Server 12 SP2-BCL
libdcerpc-binding0-4.4.2-38.39.1
libdcerpc-binding0-32bit-4.4.2-38.39.1
libdcerpc0-4.4.2-38.39.1
libdcerpc0-32bit-4.4.2-38.39.1
libndr-krb5pac0-4.4.2-38.39.1
libndr-krb5pac0-32bit-4.4.2-38.39.1
libndr-nbt0-4.4.2-38.39.1
libndr-nbt0-32bit-4.4.2-38.39.1
libndr-standard0-4.4.2-38.39.1
libndr-standard0-32bit-4.4.2-38.39.1
libndr0-4.4.2-38.39.1
libndr0-32bit-4.4.2-38.39.1
libnetapi0-4.4.2-38.39.1
libnetapi0-32bit-4.4.2-38.39.1
libsamba-credentials0-4.4.2-38.39.1
libsamba-credentials0-32bit-4.4.2-38.39.1
libsamba-errors0-4.4.2-38.39.1
libsamba-errors0-32bit-4.4.2-38.39.1
libsamba-hostconfig0-4.4.2-38.39.1
libsamba-hostconfig0-32bit-4.4.2-38.39.1
libsamba-passdb0-4.4.2-38.39.1
libsamba-passdb0-32bit-4.4.2-38.39.1
libsamba-util0-4.4.2-38.39.1
libsamba-util0-32bit-4.4.2-38.39.1
libsamdb0-4.4.2-38.39.1
libsamdb0-32bit-4.4.2-38.39.1
libsmbclient0-4.4.2-38.39.1
libsmbclient0-32bit-4.4.2-38.39.1
libsmbconf0-4.4.2-38.39.1
libsmbconf0-32bit-4.4.2-38.39.1
libsmbldap0-4.4.2-38.39.1
libsmbldap0-32bit-4.4.2-38.39.1
libtevent-util0-4.4.2-38.39.1
libtevent-util0-32bit-4.4.2-38.39.1
libwbclient0-4.4.2-38.39.1
libwbclient0-32bit-4.4.2-38.39.1
samba-4.4.2-38.39.1
samba-client-4.4.2-38.39.1
samba-client-32bit-4.4.2-38.39.1
samba-doc-4.4.2-38.39.1
samba-libs-4.4.2-38.39.1
samba-libs-32bit-4.4.2-38.39.1
samba-winbind-4.4.2-38.39.1
samba-winbind-32bit-4.4.2-38.39.1
SUSE Linux Enterprise Server 12 SP2-LTSS
libdcerpc-binding0-4.4.2-38.39.1
libdcerpc-binding0-32bit-4.4.2-38.39.1
libdcerpc0-4.4.2-38.39.1
libdcerpc0-32bit-4.4.2-38.39.1
libndr-krb5pac0-4.4.2-38.39.1
libndr-krb5pac0-32bit-4.4.2-38.39.1
libndr-nbt0-4.4.2-38.39.1
libndr-nbt0-32bit-4.4.2-38.39.1
libndr-standard0-4.4.2-38.39.1
libndr-standard0-32bit-4.4.2-38.39.1
libndr0-4.4.2-38.39.1
libndr0-32bit-4.4.2-38.39.1
libnetapi0-4.4.2-38.39.1
libnetapi0-32bit-4.4.2-38.39.1
libsamba-credentials0-4.4.2-38.39.1
libsamba-credentials0-32bit-4.4.2-38.39.1
libsamba-errors0-4.4.2-38.39.1
libsamba-errors0-32bit-4.4.2-38.39.1
libsamba-hostconfig0-4.4.2-38.39.1
libsamba-hostconfig0-32bit-4.4.2-38.39.1
libsamba-passdb0-4.4.2-38.39.1
libsamba-passdb0-32bit-4.4.2-38.39.1
libsamba-util0-4.4.2-38.39.1
libsamba-util0-32bit-4.4.2-38.39.1
libsamdb0-4.4.2-38.39.1
libsamdb0-32bit-4.4.2-38.39.1
libsmbclient0-4.4.2-38.39.1
libsmbclient0-32bit-4.4.2-38.39.1
libsmbconf0-4.4.2-38.39.1
libsmbconf0-32bit-4.4.2-38.39.1
libsmbldap0-4.4.2-38.39.1
libsmbldap0-32bit-4.4.2-38.39.1
libtevent-util0-4.4.2-38.39.1
libtevent-util0-32bit-4.4.2-38.39.1
libwbclient0-4.4.2-38.39.1
libwbclient0-32bit-4.4.2-38.39.1
samba-4.4.2-38.39.1
samba-client-4.4.2-38.39.1
samba-client-32bit-4.4.2-38.39.1
samba-doc-4.4.2-38.39.1
samba-libs-4.4.2-38.39.1
samba-libs-32bit-4.4.2-38.39.1
samba-winbind-4.4.2-38.39.1
samba-winbind-32bit-4.4.2-38.39.1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
libdcerpc-binding0-4.4.2-38.39.1
libdcerpc-binding0-32bit-4.4.2-38.39.1
libdcerpc0-4.4.2-38.39.1
libdcerpc0-32bit-4.4.2-38.39.1
libndr-krb5pac0-4.4.2-38.39.1
libndr-krb5pac0-32bit-4.4.2-38.39.1
libndr-nbt0-4.4.2-38.39.1
libndr-nbt0-32bit-4.4.2-38.39.1
libndr-standard0-4.4.2-38.39.1
libndr-standard0-32bit-4.4.2-38.39.1
libndr0-4.4.2-38.39.1
libndr0-32bit-4.4.2-38.39.1
libnetapi0-4.4.2-38.39.1
libnetapi0-32bit-4.4.2-38.39.1
libsamba-credentials0-4.4.2-38.39.1
libsamba-credentials0-32bit-4.4.2-38.39.1
libsamba-errors0-4.4.2-38.39.1
libsamba-errors0-32bit-4.4.2-38.39.1
libsamba-hostconfig0-4.4.2-38.39.1
libsamba-hostconfig0-32bit-4.4.2-38.39.1
libsamba-passdb0-4.4.2-38.39.1
libsamba-passdb0-32bit-4.4.2-38.39.1
libsamba-util0-4.4.2-38.39.1
libsamba-util0-32bit-4.4.2-38.39.1
libsamdb0-4.4.2-38.39.1
libsamdb0-32bit-4.4.2-38.39.1
libsmbclient0-4.4.2-38.39.1
libsmbclient0-32bit-4.4.2-38.39.1
libsmbconf0-4.4.2-38.39.1
libsmbconf0-32bit-4.4.2-38.39.1
libsmbldap0-4.4.2-38.39.1
libsmbldap0-32bit-4.4.2-38.39.1
libtevent-util0-4.4.2-38.39.1
libtevent-util0-32bit-4.4.2-38.39.1
libwbclient0-4.4.2-38.39.1
libwbclient0-32bit-4.4.2-38.39.1
samba-4.4.2-38.39.1
samba-client-4.4.2-38.39.1
samba-client-32bit-4.4.2-38.39.1
samba-doc-4.4.2-38.39.1
samba-libs-4.4.2-38.39.1
samba-libs-32bit-4.4.2-38.39.1
samba-winbind-4.4.2-38.39.1
samba-winbind-32bit-4.4.2-38.39.1
SUSE OpenStack Cloud 7
libdcerpc-binding0-4.4.2-38.39.1
libdcerpc-binding0-32bit-4.4.2-38.39.1
libdcerpc0-4.4.2-38.39.1
libdcerpc0-32bit-4.4.2-38.39.1
libndr-krb5pac0-4.4.2-38.39.1
libndr-krb5pac0-32bit-4.4.2-38.39.1
libndr-nbt0-4.4.2-38.39.1
libndr-nbt0-32bit-4.4.2-38.39.1
libndr-standard0-4.4.2-38.39.1
libndr-standard0-32bit-4.4.2-38.39.1
libndr0-4.4.2-38.39.1
libndr0-32bit-4.4.2-38.39.1
libnetapi0-4.4.2-38.39.1
libnetapi0-32bit-4.4.2-38.39.1
libsamba-credentials0-4.4.2-38.39.1
libsamba-credentials0-32bit-4.4.2-38.39.1
libsamba-errors0-4.4.2-38.39.1
libsamba-errors0-32bit-4.4.2-38.39.1
libsamba-hostconfig0-4.4.2-38.39.1
libsamba-hostconfig0-32bit-4.4.2-38.39.1
libsamba-passdb0-4.4.2-38.39.1
libsamba-passdb0-32bit-4.4.2-38.39.1
libsamba-util0-4.4.2-38.39.1
libsamba-util0-32bit-4.4.2-38.39.1
libsamdb0-4.4.2-38.39.1
libsamdb0-32bit-4.4.2-38.39.1
libsmbclient0-4.4.2-38.39.1
libsmbclient0-32bit-4.4.2-38.39.1
libsmbconf0-4.4.2-38.39.1
libsmbconf0-32bit-4.4.2-38.39.1
libsmbldap0-4.4.2-38.39.1
libsmbldap0-32bit-4.4.2-38.39.1
libtevent-util0-4.4.2-38.39.1
libtevent-util0-32bit-4.4.2-38.39.1
libwbclient0-4.4.2-38.39.1
libwbclient0-32bit-4.4.2-38.39.1
samba-4.4.2-38.39.1
samba-client-4.4.2-38.39.1
samba-client-32bit-4.4.2-38.39.1
samba-doc-4.4.2-38.39.1
samba-libs-4.4.2-38.39.1
samba-libs-32bit-4.4.2-38.39.1
samba-winbind-4.4.2-38.39.1
samba-winbind-32bit-4.4.2-38.39.1
Ссылки
- Link for SUSE-SU-2020:3083-1
- E-Mail link for SUSE-SU-2020:3083-1
- SUSE Security Ratings
- SUSE Bug 1173902
- SUSE Bug 1173994
- SUSE CVE CVE-2020-14318 page
- SUSE CVE CVE-2020-14323 page
Описание
A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and directory information which otherwise would be unavailable to the attacker.
Затронутые продукты
SUSE Linux Enterprise High Availability Extension 12 SP2:ctdb-4.4.2-38.39.1
SUSE Linux Enterprise Server 12 SP2-BCL:libdcerpc-binding0-32bit-4.4.2-38.39.1
SUSE Linux Enterprise Server 12 SP2-BCL:libdcerpc-binding0-4.4.2-38.39.1
SUSE Linux Enterprise Server 12 SP2-BCL:libdcerpc0-32bit-4.4.2-38.39.1
Ссылки
- CVE-2020-14318
- SUSE Bug 1173902
Описание
A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service.
Затронутые продукты
SUSE Linux Enterprise High Availability Extension 12 SP2:ctdb-4.4.2-38.39.1
SUSE Linux Enterprise Server 12 SP2-BCL:libdcerpc-binding0-32bit-4.4.2-38.39.1
SUSE Linux Enterprise Server 12 SP2-BCL:libdcerpc-binding0-4.4.2-38.39.1
SUSE Linux Enterprise Server 12 SP2-BCL:libdcerpc0-32bit-4.4.2-38.39.1
Ссылки
- CVE-2020-14323
- SUSE Bug 1173994