Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2023:0081-1

Опубликовано: 12 янв. 2023
Источник: suse-cvrf

Описание

Security update for samba

This update for samba fixes the following issues:

  • Updated to version 4.15.13:
    • CVE-2022-38023: Removed weak cryptographic algorithms from the Netlogon RPC implementation (bsc#1206504).
    • CVE-2022-42898: Fixed several buffer overflow vulnerabilities on 32-bit systems (bsc#1205126).
    • CVE-2022-3437: Fixed a buffer overflow in Heimdal unwrap_des3() (bsc#1204254).
    • CVE-2022-32742: Fixed an information disclosure issue affecting SMB1 servers (bsc#1201496).
    • CVE-2022-32746: Fixed a use-after-free occurring in database audit logging (bsc#1201490).
    • CVE-2022-2031: Fixed an AD restriction bypass associated with changing passwords (bsc#1201495).
    • CVE-2022-32745: Fixed a remote server crash that could be triggered with certain LDAP requests (bsc#1201492).
    • CVE-2022-32744: Fixed an issue where AD users could have forged password change requests on behalf of other users (bsc#1201493).

Other fixes:

  • Fixed a potential crash due to a concurrency issue (bsc#1200102).

Список пакетов

Image SLES12-SP5-Azure-BYOS
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-HPC-BYOS
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-HPC-On-Demand
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-SAP-BYOS
ctdb-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-SAP-On-Demand
ctdb-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Standard-On-Demand
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-EC2-BYOS
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-EC2-ECS-On-Demand
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-EC2-On-Demand
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-EC2-SAP-BYOS
ctdb-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-EC2-SAP-On-Demand
ctdb-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-GCE-BYOS
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-GCE-On-Demand
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-GCE-SAP-BYOS
ctdb-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-GCE-SAP-On-Demand
ctdb-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
ctdb-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
ctdb-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
SUSE Linux Enterprise High Availability Extension 12 SP5
ctdb-4.15.13+git.482.1ac2c665c7-3.74.1
SUSE Linux Enterprise Server 12 SP5
libsamba-policy-python3-devel-4.15.13+git.482.1ac2c665c7-3.74.1
libsamba-policy0-python3-4.15.13+git.482.1ac2c665c7-3.74.1
libsamba-policy0-python3-32bit-4.15.13+git.482.1ac2c665c7-3.74.1
samba-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-32bit-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-libs-32bit-4.15.13+git.482.1ac2c665c7-3.74.1
samba-devel-4.15.13+git.482.1ac2c665c7-3.74.1
samba-doc-4.15.13+git.482.1ac2c665c7-3.74.1
samba-ldb-ldap-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-32bit-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-python3-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-python3-32bit-4.15.13+git.482.1ac2c665c7-3.74.1
samba-python3-4.15.13+git.482.1ac2c665c7-3.74.1
samba-tool-4.15.13+git.482.1ac2c665c7-3.74.1
samba-winbind-4.15.13+git.482.1ac2c665c7-3.74.1
samba-winbind-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-winbind-libs-32bit-4.15.13+git.482.1ac2c665c7-3.74.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libsamba-policy-python3-devel-4.15.13+git.482.1ac2c665c7-3.74.1
libsamba-policy0-python3-4.15.13+git.482.1ac2c665c7-3.74.1
libsamba-policy0-python3-32bit-4.15.13+git.482.1ac2c665c7-3.74.1
samba-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-32bit-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-client-libs-32bit-4.15.13+git.482.1ac2c665c7-3.74.1
samba-devel-4.15.13+git.482.1ac2c665c7-3.74.1
samba-doc-4.15.13+git.482.1ac2c665c7-3.74.1
samba-ldb-ldap-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-32bit-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-python3-4.15.13+git.482.1ac2c665c7-3.74.1
samba-libs-python3-32bit-4.15.13+git.482.1ac2c665c7-3.74.1
samba-python3-4.15.13+git.482.1ac2c665c7-3.74.1
samba-tool-4.15.13+git.482.1ac2c665c7-3.74.1
samba-winbind-4.15.13+git.482.1ac2c665c7-3.74.1
samba-winbind-libs-4.15.13+git.482.1ac2c665c7-3.74.1
samba-winbind-libs-32bit-4.15.13+git.482.1ac2c665c7-3.74.1
SUSE Linux Enterprise Software Development Kit 12 SP5
libsamba-policy-devel-4.15.13+git.482.1ac2c665c7-3.74.1
libsamba-policy-python3-devel-4.15.13+git.482.1ac2c665c7-3.74.1
samba-devel-4.15.13+git.482.1ac2c665c7-3.74.1
samba-devel-32bit-4.15.13+git.482.1ac2c665c7-3.74.1

Ссылки

Описание

A flaw was found in Samba. The security vulnerability occurs when KDC and the kpasswd service share a single account and set of keys, allowing them to decrypt each other's tickets. A user who has been requested to change their password, can exploit this flaw to obtain and use tickets to other services.

Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-BYOS:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Ссылки

Описание

A flaw was found in Samba. Some SMB1 write requests were not correctly range-checked to ensure the client had sent enough data to fulfill the write, allowing server memory contents to be written into the file (or printer) instead of client-supplied data. The client cannot control the area of the server memory written to the file (or printer).

Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-BYOS:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Ссылки

Описание

A flaw was found in Samba. The KDC accepts kpasswd requests encrypted with any key known to it. By encrypting forged kpasswd requests with its own key, a user can change other users' passwords, enabling full domain takeover.

Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-BYOS:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Ссылки

Описание

A flaw was found in Samba. Samba AD users can cause the server to access uninitialized data with an LDAP add or modify the request, usually resulting in a segmentation fault.

Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-BYOS:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Ссылки

Описание

A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module, resulting in a use-after-free issue. This issue is only possible when modifying certain privileged attributes, such as userAccountControl.

Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-BYOS:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Ссылки

Описание

A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc() allocated memory when presented with a maliciously small packet. This flaw allows a remote user to send specially crafted malicious data to the application, possibly resulting in a denial of service (DoS) attack.

Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-BYOS:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Ссылки

Описание

Netlogon RPC Elevation of Privilege Vulnerability

Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-BYOS:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Ссылки

Описание

PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms. This occurs in krb5_pac_parse in lib/krb5/krb/pac.c. Heimdal before 7.7.1 has "a similar bug."

Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-BYOS:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-client-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.15.13+git.482.1ac2c665c7-3.74.1
Ссылки
Уязвимость SUSE-SU-2023:0081-1