Описание
Security update for samba
This update for samba fixes the following issues:
- CVE-2016-2124: Fixed not to fallback to non spnego authentication if we require kerberos (bsc#1014440).
- CVE-2020-25717: Fixed privilege escalation inside an AD Domain where a user could become root on domain members (bsc#1192284).
Список пакетов
SUSE Linux Enterprise Server 12 SP2-BCL
libdcerpc-binding0-4.4.2-38.45.2
libdcerpc-binding0-32bit-4.4.2-38.45.2
libdcerpc0-4.4.2-38.45.2
libdcerpc0-32bit-4.4.2-38.45.2
libndr-krb5pac0-4.4.2-38.45.2
libndr-krb5pac0-32bit-4.4.2-38.45.2
libndr-nbt0-4.4.2-38.45.2
libndr-nbt0-32bit-4.4.2-38.45.2
libndr-standard0-4.4.2-38.45.2
libndr-standard0-32bit-4.4.2-38.45.2
libndr0-4.4.2-38.45.2
libndr0-32bit-4.4.2-38.45.2
libnetapi0-4.4.2-38.45.2
libnetapi0-32bit-4.4.2-38.45.2
libsamba-credentials0-4.4.2-38.45.2
libsamba-credentials0-32bit-4.4.2-38.45.2
libsamba-errors0-4.4.2-38.45.2
libsamba-errors0-32bit-4.4.2-38.45.2
libsamba-hostconfig0-4.4.2-38.45.2
libsamba-hostconfig0-32bit-4.4.2-38.45.2
libsamba-passdb0-4.4.2-38.45.2
libsamba-passdb0-32bit-4.4.2-38.45.2
libsamba-util0-4.4.2-38.45.2
libsamba-util0-32bit-4.4.2-38.45.2
libsamdb0-4.4.2-38.45.2
libsamdb0-32bit-4.4.2-38.45.2
libsmbclient0-4.4.2-38.45.2
libsmbclient0-32bit-4.4.2-38.45.2
libsmbconf0-4.4.2-38.45.2
libsmbconf0-32bit-4.4.2-38.45.2
libsmbldap0-4.4.2-38.45.2
libsmbldap0-32bit-4.4.2-38.45.2
libtevent-util0-4.4.2-38.45.2
libtevent-util0-32bit-4.4.2-38.45.2
libwbclient0-4.4.2-38.45.2
libwbclient0-32bit-4.4.2-38.45.2
samba-4.4.2-38.45.2
samba-client-4.4.2-38.45.2
samba-client-32bit-4.4.2-38.45.2
samba-doc-4.4.2-38.45.2
samba-libs-4.4.2-38.45.2
samba-libs-32bit-4.4.2-38.45.2
samba-winbind-4.4.2-38.45.2
samba-winbind-32bit-4.4.2-38.45.2
Ссылки
- Link for SUSE-SU-2021:3673-1
- E-Mail link for SUSE-SU-2021:3673-1
- SUSE Security Ratings
- SUSE Bug 1014440
- SUSE Bug 1192284
- SUSE CVE CVE-2016-2124 page
- SUSE CVE CVE-2020-25717 page
Описание
A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP2-BCL:libdcerpc-binding0-32bit-4.4.2-38.45.2
SUSE Linux Enterprise Server 12 SP2-BCL:libdcerpc-binding0-4.4.2-38.45.2
SUSE Linux Enterprise Server 12 SP2-BCL:libdcerpc0-32bit-4.4.2-38.45.2
SUSE Linux Enterprise Server 12 SP2-BCL:libdcerpc0-4.4.2-38.45.2
Ссылки
- CVE-2016-2124
- SUSE Bug 1014440
Описание
A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP2-BCL:libdcerpc-binding0-32bit-4.4.2-38.45.2
SUSE Linux Enterprise Server 12 SP2-BCL:libdcerpc-binding0-4.4.2-38.45.2
SUSE Linux Enterprise Server 12 SP2-BCL:libdcerpc0-32bit-4.4.2-38.45.2
SUSE Linux Enterprise Server 12 SP2-BCL:libdcerpc0-4.4.2-38.45.2
Ссылки
- CVE-2020-25717
- SUSE Bug 1192284
- SUSE Bug 1192505
- SUSE Bug 1192601
- SUSE Bug 1192849
- SUSE Bug 1193011
- SUSE Bug 1194049
- SUSE Bug 1194307
- SUSE Bug 1195815
- SUSE Bug 1196344
- SUSE Bug 1196717
- SUSE Bug 1196920
- SUSE Bug 1205061