Описание
Security update for samba
This update for samba fixes the following issues:
- CVE-2021-20251: Fixed an issue where the bad password count would not be properly incremented, which could allow attackers to brute force a user's password (bsc#1206546).
- CVE-2022-38023: Disabled weak ciphers by default in the Netlogon Secure channel (bsc#1206504).
- CVE-2022-37966: Fixed an issue where a weak cipher would be selected to encrypt session keys, which could lead to privilege escalation (bsc#1205385).
Список пакетов
SUSE Linux Enterprise High Availability Extension 12 SP4
ctdb-4.6.16+git.384.9fec958bed-3.76.1
SUSE Linux Enterprise Server 12 SP4-LTSS
libdcerpc-binding0-4.6.16+git.384.9fec958bed-3.76.1
libdcerpc-binding0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libdcerpc0-4.6.16+git.384.9fec958bed-3.76.1
libdcerpc0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr-krb5pac0-4.6.16+git.384.9fec958bed-3.76.1
libndr-krb5pac0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr-nbt0-4.6.16+git.384.9fec958bed-3.76.1
libndr-nbt0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr-standard0-4.6.16+git.384.9fec958bed-3.76.1
libndr-standard0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr0-4.6.16+git.384.9fec958bed-3.76.1
libndr0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libnetapi0-4.6.16+git.384.9fec958bed-3.76.1
libnetapi0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-credentials0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-credentials0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-errors0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-errors0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-hostconfig0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-hostconfig0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-passdb0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-passdb0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-util0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-util0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamdb0-4.6.16+git.384.9fec958bed-3.76.1
libsamdb0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsmbclient0-4.6.16+git.384.9fec958bed-3.76.1
libsmbclient0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsmbconf0-4.6.16+git.384.9fec958bed-3.76.1
libsmbconf0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsmbldap0-4.6.16+git.384.9fec958bed-3.76.1
libsmbldap0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libtevent-util0-4.6.16+git.384.9fec958bed-3.76.1
libtevent-util0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libwbclient0-4.6.16+git.384.9fec958bed-3.76.1
libwbclient0-32bit-4.6.16+git.384.9fec958bed-3.76.1
samba-4.6.16+git.384.9fec958bed-3.76.1
samba-client-4.6.16+git.384.9fec958bed-3.76.1
samba-client-32bit-4.6.16+git.384.9fec958bed-3.76.1
samba-doc-4.6.16+git.384.9fec958bed-3.76.1
samba-libs-4.6.16+git.384.9fec958bed-3.76.1
samba-libs-32bit-4.6.16+git.384.9fec958bed-3.76.1
samba-winbind-4.6.16+git.384.9fec958bed-3.76.1
samba-winbind-32bit-4.6.16+git.384.9fec958bed-3.76.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4
libdcerpc-binding0-4.6.16+git.384.9fec958bed-3.76.1
libdcerpc-binding0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libdcerpc0-4.6.16+git.384.9fec958bed-3.76.1
libdcerpc0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr-krb5pac0-4.6.16+git.384.9fec958bed-3.76.1
libndr-krb5pac0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr-nbt0-4.6.16+git.384.9fec958bed-3.76.1
libndr-nbt0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr-standard0-4.6.16+git.384.9fec958bed-3.76.1
libndr-standard0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr0-4.6.16+git.384.9fec958bed-3.76.1
libndr0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libnetapi0-4.6.16+git.384.9fec958bed-3.76.1
libnetapi0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-credentials0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-credentials0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-errors0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-errors0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-hostconfig0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-hostconfig0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-passdb0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-passdb0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-util0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-util0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamdb0-4.6.16+git.384.9fec958bed-3.76.1
libsamdb0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsmbclient0-4.6.16+git.384.9fec958bed-3.76.1
libsmbclient0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsmbconf0-4.6.16+git.384.9fec958bed-3.76.1
libsmbconf0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsmbldap0-4.6.16+git.384.9fec958bed-3.76.1
libsmbldap0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libtevent-util0-4.6.16+git.384.9fec958bed-3.76.1
libtevent-util0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libwbclient0-4.6.16+git.384.9fec958bed-3.76.1
libwbclient0-32bit-4.6.16+git.384.9fec958bed-3.76.1
samba-4.6.16+git.384.9fec958bed-3.76.1
samba-client-4.6.16+git.384.9fec958bed-3.76.1
samba-client-32bit-4.6.16+git.384.9fec958bed-3.76.1
samba-doc-4.6.16+git.384.9fec958bed-3.76.1
samba-libs-4.6.16+git.384.9fec958bed-3.76.1
samba-libs-32bit-4.6.16+git.384.9fec958bed-3.76.1
samba-winbind-4.6.16+git.384.9fec958bed-3.76.1
samba-winbind-32bit-4.6.16+git.384.9fec958bed-3.76.1
SUSE OpenStack Cloud 9
libdcerpc-binding0-4.6.16+git.384.9fec958bed-3.76.1
libdcerpc-binding0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libdcerpc0-4.6.16+git.384.9fec958bed-3.76.1
libdcerpc0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr-krb5pac0-4.6.16+git.384.9fec958bed-3.76.1
libndr-krb5pac0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr-nbt0-4.6.16+git.384.9fec958bed-3.76.1
libndr-nbt0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr-standard0-4.6.16+git.384.9fec958bed-3.76.1
libndr-standard0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr0-4.6.16+git.384.9fec958bed-3.76.1
libndr0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libnetapi0-4.6.16+git.384.9fec958bed-3.76.1
libnetapi0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-credentials0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-credentials0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-errors0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-errors0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-hostconfig0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-hostconfig0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-passdb0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-passdb0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-util0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-util0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamdb0-4.6.16+git.384.9fec958bed-3.76.1
libsamdb0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsmbclient0-4.6.16+git.384.9fec958bed-3.76.1
libsmbclient0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsmbconf0-4.6.16+git.384.9fec958bed-3.76.1
libsmbconf0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsmbldap0-4.6.16+git.384.9fec958bed-3.76.1
libsmbldap0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libtevent-util0-4.6.16+git.384.9fec958bed-3.76.1
libtevent-util0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libwbclient0-4.6.16+git.384.9fec958bed-3.76.1
libwbclient0-32bit-4.6.16+git.384.9fec958bed-3.76.1
samba-4.6.16+git.384.9fec958bed-3.76.1
samba-client-4.6.16+git.384.9fec958bed-3.76.1
samba-client-32bit-4.6.16+git.384.9fec958bed-3.76.1
samba-doc-4.6.16+git.384.9fec958bed-3.76.1
samba-libs-4.6.16+git.384.9fec958bed-3.76.1
samba-libs-32bit-4.6.16+git.384.9fec958bed-3.76.1
samba-winbind-4.6.16+git.384.9fec958bed-3.76.1
samba-winbind-32bit-4.6.16+git.384.9fec958bed-3.76.1
SUSE OpenStack Cloud Crowbar 9
libdcerpc-binding0-4.6.16+git.384.9fec958bed-3.76.1
libdcerpc-binding0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libdcerpc0-4.6.16+git.384.9fec958bed-3.76.1
libdcerpc0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr-krb5pac0-4.6.16+git.384.9fec958bed-3.76.1
libndr-krb5pac0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr-nbt0-4.6.16+git.384.9fec958bed-3.76.1
libndr-nbt0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr-standard0-4.6.16+git.384.9fec958bed-3.76.1
libndr-standard0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libndr0-4.6.16+git.384.9fec958bed-3.76.1
libndr0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libnetapi0-4.6.16+git.384.9fec958bed-3.76.1
libnetapi0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-credentials0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-credentials0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-errors0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-errors0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-hostconfig0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-hostconfig0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-passdb0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-passdb0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamba-util0-4.6.16+git.384.9fec958bed-3.76.1
libsamba-util0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsamdb0-4.6.16+git.384.9fec958bed-3.76.1
libsamdb0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsmbclient0-4.6.16+git.384.9fec958bed-3.76.1
libsmbclient0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsmbconf0-4.6.16+git.384.9fec958bed-3.76.1
libsmbconf0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libsmbldap0-4.6.16+git.384.9fec958bed-3.76.1
libsmbldap0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libtevent-util0-4.6.16+git.384.9fec958bed-3.76.1
libtevent-util0-32bit-4.6.16+git.384.9fec958bed-3.76.1
libwbclient0-4.6.16+git.384.9fec958bed-3.76.1
libwbclient0-32bit-4.6.16+git.384.9fec958bed-3.76.1
samba-4.6.16+git.384.9fec958bed-3.76.1
samba-client-4.6.16+git.384.9fec958bed-3.76.1
samba-client-32bit-4.6.16+git.384.9fec958bed-3.76.1
samba-doc-4.6.16+git.384.9fec958bed-3.76.1
samba-libs-4.6.16+git.384.9fec958bed-3.76.1
samba-libs-32bit-4.6.16+git.384.9fec958bed-3.76.1
samba-winbind-4.6.16+git.384.9fec958bed-3.76.1
samba-winbind-32bit-4.6.16+git.384.9fec958bed-3.76.1
Ссылки
- Link for SUSE-SU-2023:0126-1
- E-Mail link for SUSE-SU-2023:0126-1
- SUSE Security Ratings
- SUSE Bug 1205385
- SUSE Bug 1206504
- SUSE Bug 1206546
- SUSE CVE CVE-2021-20251 page
- SUSE CVE CVE-2022-37966 page
- SUSE CVE CVE-2022-38023 page
Описание
A flaw was found in samba. A race condition in the password lockout code may lead to the risk of brute force attacks being successful if special conditions are met.
Затронутые продукты
SUSE Linux Enterprise High Availability Extension 12 SP4:ctdb-4.6.16+git.384.9fec958bed-3.76.1
SUSE Linux Enterprise Server 12 SP4-LTSS:libdcerpc-binding0-32bit-4.6.16+git.384.9fec958bed-3.76.1
SUSE Linux Enterprise Server 12 SP4-LTSS:libdcerpc-binding0-4.6.16+git.384.9fec958bed-3.76.1
SUSE Linux Enterprise Server 12 SP4-LTSS:libdcerpc0-32bit-4.6.16+git.384.9fec958bed-3.76.1
Ссылки
- CVE-2021-20251
- SUSE Bug 1206546
- SUSE Bug 1208433
- SUSE Bug 1209325
- SUSE Bug 1209664
Описание
Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability
Затронутые продукты
SUSE Linux Enterprise High Availability Extension 12 SP4:ctdb-4.6.16+git.384.9fec958bed-3.76.1
SUSE Linux Enterprise Server 12 SP4-LTSS:libdcerpc-binding0-32bit-4.6.16+git.384.9fec958bed-3.76.1
SUSE Linux Enterprise Server 12 SP4-LTSS:libdcerpc-binding0-4.6.16+git.384.9fec958bed-3.76.1
SUSE Linux Enterprise Server 12 SP4-LTSS:libdcerpc0-32bit-4.6.16+git.384.9fec958bed-3.76.1
Ссылки
- CVE-2022-37966
- SUSE Bug 1205385
- SUSE Bug 1208347
- SUSE Bug 1208433
- SUSE Bug 1209664
Описание
Netlogon RPC Elevation of Privilege Vulnerability
Затронутые продукты
SUSE Linux Enterprise High Availability Extension 12 SP4:ctdb-4.6.16+git.384.9fec958bed-3.76.1
SUSE Linux Enterprise Server 12 SP4-LTSS:libdcerpc-binding0-32bit-4.6.16+git.384.9fec958bed-3.76.1
SUSE Linux Enterprise Server 12 SP4-LTSS:libdcerpc-binding0-4.6.16+git.384.9fec958bed-3.76.1
SUSE Linux Enterprise Server 12 SP4-LTSS:libdcerpc0-32bit-4.6.16+git.384.9fec958bed-3.76.1
Ссылки
- CVE-2022-38023
- SUSE Bug 1206504
- SUSE Bug 1209664
- SUSE Bug 1213694