Описание
Security update for samba
This update for samba fixes the following issues:
- CVE-2021-20251: Fixed an issue where the bad password count would not be properly incremented, which could allow attackers to brute force a user's password (bsc#1206546).
- CVE-2022-37966: Fixed an issue where a weak cipher would be selected to encrypt session keys, which could lead to privilege escalation (bsc#1205385).
Список пакетов
Image SLES12-SP5-Azure-BYOS
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-Basic-On-Demand
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-HPC-BYOS
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-HPC-On-Demand
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-SAP-BYOS
ctdb-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-SAP-On-Demand
ctdb-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-Standard-On-Demand
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-EC2-BYOS
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-EC2-ECS-On-Demand
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-EC2-On-Demand
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-EC2-SAP-BYOS
ctdb-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-EC2-SAP-On-Demand
ctdb-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-GCE-BYOS
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-GCE-On-Demand
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-GCE-SAP-BYOS
ctdb-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-GCE-SAP-On-Demand
ctdb-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
ctdb-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
ctdb-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
SUSE Linux Enterprise High Availability Extension 12 SP5
ctdb-4.15.13+git.534.0d9f8ece26-3.77.1
SUSE Linux Enterprise Server 12 SP5
libsamba-policy-python3-devel-4.15.13+git.534.0d9f8ece26-3.77.1
libsamba-policy0-python3-4.15.13+git.534.0d9f8ece26-3.77.1
libsamba-policy0-python3-32bit-4.15.13+git.534.0d9f8ece26-3.77.1
samba-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-32bit-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-libs-32bit-4.15.13+git.534.0d9f8ece26-3.77.1
samba-devel-4.15.13+git.534.0d9f8ece26-3.77.1
samba-doc-4.15.13+git.534.0d9f8ece26-3.77.1
samba-ldb-ldap-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-32bit-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-python3-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-python3-32bit-4.15.13+git.534.0d9f8ece26-3.77.1
samba-python3-4.15.13+git.534.0d9f8ece26-3.77.1
samba-tool-4.15.13+git.534.0d9f8ece26-3.77.1
samba-winbind-4.15.13+git.534.0d9f8ece26-3.77.1
samba-winbind-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-winbind-libs-32bit-4.15.13+git.534.0d9f8ece26-3.77.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libsamba-policy-python3-devel-4.15.13+git.534.0d9f8ece26-3.77.1
libsamba-policy0-python3-4.15.13+git.534.0d9f8ece26-3.77.1
libsamba-policy0-python3-32bit-4.15.13+git.534.0d9f8ece26-3.77.1
samba-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-32bit-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-client-libs-32bit-4.15.13+git.534.0d9f8ece26-3.77.1
samba-devel-4.15.13+git.534.0d9f8ece26-3.77.1
samba-doc-4.15.13+git.534.0d9f8ece26-3.77.1
samba-ldb-ldap-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-32bit-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-python3-4.15.13+git.534.0d9f8ece26-3.77.1
samba-libs-python3-32bit-4.15.13+git.534.0d9f8ece26-3.77.1
samba-python3-4.15.13+git.534.0d9f8ece26-3.77.1
samba-tool-4.15.13+git.534.0d9f8ece26-3.77.1
samba-winbind-4.15.13+git.534.0d9f8ece26-3.77.1
samba-winbind-libs-4.15.13+git.534.0d9f8ece26-3.77.1
samba-winbind-libs-32bit-4.15.13+git.534.0d9f8ece26-3.77.1
SUSE Linux Enterprise Software Development Kit 12 SP5
libsamba-policy-devel-4.15.13+git.534.0d9f8ece26-3.77.1
libsamba-policy-python3-devel-4.15.13+git.534.0d9f8ece26-3.77.1
samba-devel-4.15.13+git.534.0d9f8ece26-3.77.1
samba-devel-32bit-4.15.13+git.534.0d9f8ece26-3.77.1
Ссылки
- Link for SUSE-SU-2023:0164-1
- E-Mail link for SUSE-SU-2023:0164-1
- SUSE Security Ratings
- SUSE Bug 1205385
- SUSE Bug 1206504
- SUSE Bug 1206546
- SUSE CVE CVE-2021-20251 page
- SUSE CVE CVE-2022-37966 page
- SUSE CVE CVE-2022-38023 page
Описание
A flaw was found in samba. A race condition in the password lockout code may lead to the risk of brute force attacks being successful if special conditions are met.
Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-BYOS:samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Ссылки
- CVE-2021-20251
- SUSE Bug 1206546
- SUSE Bug 1208433
- SUSE Bug 1209325
- SUSE Bug 1209664
Описание
Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability
Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-BYOS:samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Ссылки
- CVE-2022-37966
- SUSE Bug 1205385
- SUSE Bug 1208347
- SUSE Bug 1208433
- SUSE Bug 1209664
Описание
Netlogon RPC Elevation of Privilege Vulnerability
Затронутые продукты
Image SLES12-SP5-Azure-BYOS:samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-BYOS:samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-client-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Image SLES12-SP5-Azure-Basic-On-Demand:samba-libs-4.15.13+git.534.0d9f8ece26-3.77.1
Ссылки
- CVE-2022-38023
- SUSE Bug 1206504
- SUSE Bug 1209664
- SUSE Bug 1213694