SUSE-SU-2023:2887-1

Опубликовано: 19 июл. 2023

Источник: suse-cvrf

Описание

Security update for samba

This update for samba fixes the following issues:

CVE-2022-2127: Fixed issue where lm_resp_len was not checked properly in winbindd_pam_auth_crap_send (bsc#1213174).

Bugfixes:

Fixed trust relationship failure (bsc#1213384).

Список пакетов

SUSE Linux Enterprise High Availability Extension 12 SP4

ctdb-4.6.16+git.393.97432483687-3.81.1

SUSE Linux Enterprise Server 12 SP4-ESPOS

libdcerpc-binding0-4.6.16+git.393.97432483687-3.81.1

libdcerpc-binding0-32bit-4.6.16+git.393.97432483687-3.81.1

libdcerpc0-4.6.16+git.393.97432483687-3.81.1

libdcerpc0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-krb5pac0-4.6.16+git.393.97432483687-3.81.1

libndr-krb5pac0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-nbt0-4.6.16+git.393.97432483687-3.81.1

libndr-nbt0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-standard0-4.6.16+git.393.97432483687-3.81.1

libndr-standard0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr0-4.6.16+git.393.97432483687-3.81.1

libndr0-32bit-4.6.16+git.393.97432483687-3.81.1

libnetapi0-4.6.16+git.393.97432483687-3.81.1

libnetapi0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-credentials0-4.6.16+git.393.97432483687-3.81.1

libsamba-credentials0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-errors0-4.6.16+git.393.97432483687-3.81.1

libsamba-errors0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-hostconfig0-4.6.16+git.393.97432483687-3.81.1

libsamba-hostconfig0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-passdb0-4.6.16+git.393.97432483687-3.81.1

libsamba-passdb0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-util0-4.6.16+git.393.97432483687-3.81.1

libsamba-util0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamdb0-4.6.16+git.393.97432483687-3.81.1

libsamdb0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbclient0-4.6.16+git.393.97432483687-3.81.1

libsmbclient0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbconf0-4.6.16+git.393.97432483687-3.81.1

libsmbconf0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbldap0-4.6.16+git.393.97432483687-3.81.1

libsmbldap0-32bit-4.6.16+git.393.97432483687-3.81.1

libtevent-util0-4.6.16+git.393.97432483687-3.81.1

libtevent-util0-32bit-4.6.16+git.393.97432483687-3.81.1

libwbclient0-4.6.16+git.393.97432483687-3.81.1

libwbclient0-32bit-4.6.16+git.393.97432483687-3.81.1

samba-4.6.16+git.393.97432483687-3.81.1

samba-client-4.6.16+git.393.97432483687-3.81.1

samba-client-32bit-4.6.16+git.393.97432483687-3.81.1

samba-doc-4.6.16+git.393.97432483687-3.81.1

samba-libs-4.6.16+git.393.97432483687-3.81.1

samba-libs-32bit-4.6.16+git.393.97432483687-3.81.1

samba-winbind-4.6.16+git.393.97432483687-3.81.1

samba-winbind-32bit-4.6.16+git.393.97432483687-3.81.1

SUSE Linux Enterprise Server 12 SP4-LTSS

libdcerpc-binding0-4.6.16+git.393.97432483687-3.81.1

libdcerpc-binding0-32bit-4.6.16+git.393.97432483687-3.81.1

libdcerpc0-4.6.16+git.393.97432483687-3.81.1

libdcerpc0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-krb5pac0-4.6.16+git.393.97432483687-3.81.1

libndr-krb5pac0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-nbt0-4.6.16+git.393.97432483687-3.81.1

libndr-nbt0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-standard0-4.6.16+git.393.97432483687-3.81.1

libndr-standard0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr0-4.6.16+git.393.97432483687-3.81.1

libndr0-32bit-4.6.16+git.393.97432483687-3.81.1

libnetapi0-4.6.16+git.393.97432483687-3.81.1

libnetapi0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-credentials0-4.6.16+git.393.97432483687-3.81.1

libsamba-credentials0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-errors0-4.6.16+git.393.97432483687-3.81.1

libsamba-errors0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-hostconfig0-4.6.16+git.393.97432483687-3.81.1

libsamba-hostconfig0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-passdb0-4.6.16+git.393.97432483687-3.81.1

libsamba-passdb0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-util0-4.6.16+git.393.97432483687-3.81.1

libsamba-util0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamdb0-4.6.16+git.393.97432483687-3.81.1

libsamdb0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbclient0-4.6.16+git.393.97432483687-3.81.1

libsmbclient0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbconf0-4.6.16+git.393.97432483687-3.81.1

libsmbconf0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbldap0-4.6.16+git.393.97432483687-3.81.1

libsmbldap0-32bit-4.6.16+git.393.97432483687-3.81.1

libtevent-util0-4.6.16+git.393.97432483687-3.81.1

libtevent-util0-32bit-4.6.16+git.393.97432483687-3.81.1

libwbclient0-4.6.16+git.393.97432483687-3.81.1

libwbclient0-32bit-4.6.16+git.393.97432483687-3.81.1

samba-4.6.16+git.393.97432483687-3.81.1

samba-client-4.6.16+git.393.97432483687-3.81.1

samba-client-32bit-4.6.16+git.393.97432483687-3.81.1

samba-doc-4.6.16+git.393.97432483687-3.81.1

samba-libs-4.6.16+git.393.97432483687-3.81.1

samba-libs-32bit-4.6.16+git.393.97432483687-3.81.1

samba-winbind-4.6.16+git.393.97432483687-3.81.1

samba-winbind-32bit-4.6.16+git.393.97432483687-3.81.1

SUSE Linux Enterprise Server for SAP Applications 12 SP4

libdcerpc-binding0-4.6.16+git.393.97432483687-3.81.1

libdcerpc-binding0-32bit-4.6.16+git.393.97432483687-3.81.1

libdcerpc0-4.6.16+git.393.97432483687-3.81.1

libdcerpc0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-krb5pac0-4.6.16+git.393.97432483687-3.81.1

libndr-krb5pac0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-nbt0-4.6.16+git.393.97432483687-3.81.1

libndr-nbt0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-standard0-4.6.16+git.393.97432483687-3.81.1

libndr-standard0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr0-4.6.16+git.393.97432483687-3.81.1

libndr0-32bit-4.6.16+git.393.97432483687-3.81.1

libnetapi0-4.6.16+git.393.97432483687-3.81.1

libnetapi0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-credentials0-4.6.16+git.393.97432483687-3.81.1

libsamba-credentials0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-errors0-4.6.16+git.393.97432483687-3.81.1

libsamba-errors0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-hostconfig0-4.6.16+git.393.97432483687-3.81.1

libsamba-hostconfig0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-passdb0-4.6.16+git.393.97432483687-3.81.1

libsamba-passdb0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-util0-4.6.16+git.393.97432483687-3.81.1

libsamba-util0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamdb0-4.6.16+git.393.97432483687-3.81.1

libsamdb0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbclient0-4.6.16+git.393.97432483687-3.81.1

libsmbclient0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbconf0-4.6.16+git.393.97432483687-3.81.1

libsmbconf0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbldap0-4.6.16+git.393.97432483687-3.81.1

libsmbldap0-32bit-4.6.16+git.393.97432483687-3.81.1

libtevent-util0-4.6.16+git.393.97432483687-3.81.1

libtevent-util0-32bit-4.6.16+git.393.97432483687-3.81.1

libwbclient0-4.6.16+git.393.97432483687-3.81.1

libwbclient0-32bit-4.6.16+git.393.97432483687-3.81.1

samba-4.6.16+git.393.97432483687-3.81.1

samba-client-4.6.16+git.393.97432483687-3.81.1

samba-client-32bit-4.6.16+git.393.97432483687-3.81.1

samba-doc-4.6.16+git.393.97432483687-3.81.1

samba-libs-4.6.16+git.393.97432483687-3.81.1

samba-libs-32bit-4.6.16+git.393.97432483687-3.81.1

samba-winbind-4.6.16+git.393.97432483687-3.81.1

samba-winbind-32bit-4.6.16+git.393.97432483687-3.81.1

SUSE OpenStack Cloud 9

libdcerpc-binding0-4.6.16+git.393.97432483687-3.81.1

libdcerpc-binding0-32bit-4.6.16+git.393.97432483687-3.81.1

libdcerpc0-4.6.16+git.393.97432483687-3.81.1

libdcerpc0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-krb5pac0-4.6.16+git.393.97432483687-3.81.1

libndr-krb5pac0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-nbt0-4.6.16+git.393.97432483687-3.81.1

libndr-nbt0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-standard0-4.6.16+git.393.97432483687-3.81.1

libndr-standard0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr0-4.6.16+git.393.97432483687-3.81.1

libndr0-32bit-4.6.16+git.393.97432483687-3.81.1

libnetapi0-4.6.16+git.393.97432483687-3.81.1

libnetapi0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-credentials0-4.6.16+git.393.97432483687-3.81.1

libsamba-credentials0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-errors0-4.6.16+git.393.97432483687-3.81.1

libsamba-errors0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-hostconfig0-4.6.16+git.393.97432483687-3.81.1

libsamba-hostconfig0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-passdb0-4.6.16+git.393.97432483687-3.81.1

libsamba-passdb0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-util0-4.6.16+git.393.97432483687-3.81.1

libsamba-util0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamdb0-4.6.16+git.393.97432483687-3.81.1

libsamdb0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbclient0-4.6.16+git.393.97432483687-3.81.1

libsmbclient0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbconf0-4.6.16+git.393.97432483687-3.81.1

libsmbconf0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbldap0-4.6.16+git.393.97432483687-3.81.1

libsmbldap0-32bit-4.6.16+git.393.97432483687-3.81.1

libtevent-util0-4.6.16+git.393.97432483687-3.81.1

libtevent-util0-32bit-4.6.16+git.393.97432483687-3.81.1

libwbclient0-4.6.16+git.393.97432483687-3.81.1

libwbclient0-32bit-4.6.16+git.393.97432483687-3.81.1

samba-4.6.16+git.393.97432483687-3.81.1

samba-client-4.6.16+git.393.97432483687-3.81.1

samba-client-32bit-4.6.16+git.393.97432483687-3.81.1

samba-doc-4.6.16+git.393.97432483687-3.81.1

samba-libs-4.6.16+git.393.97432483687-3.81.1

samba-libs-32bit-4.6.16+git.393.97432483687-3.81.1

samba-winbind-4.6.16+git.393.97432483687-3.81.1

samba-winbind-32bit-4.6.16+git.393.97432483687-3.81.1

SUSE OpenStack Cloud Crowbar 9

libdcerpc-binding0-4.6.16+git.393.97432483687-3.81.1

libdcerpc-binding0-32bit-4.6.16+git.393.97432483687-3.81.1

libdcerpc0-4.6.16+git.393.97432483687-3.81.1

libdcerpc0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-krb5pac0-4.6.16+git.393.97432483687-3.81.1

libndr-krb5pac0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-nbt0-4.6.16+git.393.97432483687-3.81.1

libndr-nbt0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr-standard0-4.6.16+git.393.97432483687-3.81.1

libndr-standard0-32bit-4.6.16+git.393.97432483687-3.81.1

libndr0-4.6.16+git.393.97432483687-3.81.1

libndr0-32bit-4.6.16+git.393.97432483687-3.81.1

libnetapi0-4.6.16+git.393.97432483687-3.81.1

libnetapi0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-credentials0-4.6.16+git.393.97432483687-3.81.1

libsamba-credentials0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-errors0-4.6.16+git.393.97432483687-3.81.1

libsamba-errors0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-hostconfig0-4.6.16+git.393.97432483687-3.81.1

libsamba-hostconfig0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-passdb0-4.6.16+git.393.97432483687-3.81.1

libsamba-passdb0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamba-util0-4.6.16+git.393.97432483687-3.81.1

libsamba-util0-32bit-4.6.16+git.393.97432483687-3.81.1

libsamdb0-4.6.16+git.393.97432483687-3.81.1

libsamdb0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbclient0-4.6.16+git.393.97432483687-3.81.1

libsmbclient0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbconf0-4.6.16+git.393.97432483687-3.81.1

libsmbconf0-32bit-4.6.16+git.393.97432483687-3.81.1

libsmbldap0-4.6.16+git.393.97432483687-3.81.1

libsmbldap0-32bit-4.6.16+git.393.97432483687-3.81.1

libtevent-util0-4.6.16+git.393.97432483687-3.81.1

libtevent-util0-32bit-4.6.16+git.393.97432483687-3.81.1

libwbclient0-4.6.16+git.393.97432483687-3.81.1

libwbclient0-32bit-4.6.16+git.393.97432483687-3.81.1

samba-4.6.16+git.393.97432483687-3.81.1

samba-client-4.6.16+git.393.97432483687-3.81.1

samba-client-32bit-4.6.16+git.393.97432483687-3.81.1

samba-doc-4.6.16+git.393.97432483687-3.81.1

samba-libs-4.6.16+git.393.97432483687-3.81.1

samba-libs-32bit-4.6.16+git.393.97432483687-3.81.1

samba-winbind-4.6.16+git.393.97432483687-3.81.1

samba-winbind-32bit-4.6.16+git.393.97432483687-3.81.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20232887-1/
Link for SUSE-SU-2023:2887-1
https://lists.suse.com/pipermail/sle-security-updates/2023-July/015536.html
E-Mail link for SUSE-SU-2023:2887-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1213174
SUSE Bug 1213174
https://bugzilla.suse.com/1213384
SUSE Bug 1213384
https://www.suse.com/security/cve/CVE-2022-2127/
SUSE CVE CVE-2022-2127 page

Описание

An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbindd_pam_auth_crap.c. When performing NTLM authentication, the client replies to cryptographic challenges back to the server. These replies have variable lengths, and Winbind fails to check the lan manager response length. When Winbind is used for NTLM authentication, a maliciously crafted request can trigger an out-of-bounds read in Winbind, possibly resulting in a crash.

Затронутые продукты

SUSE Linux Enterprise High Availability Extension 12 SP4:ctdb-4.6.16+git.393.97432483687-3.81.1

SUSE Linux Enterprise Server 12 SP4-ESPOS:libdcerpc-binding0-32bit-4.6.16+git.393.97432483687-3.81.1

SUSE Linux Enterprise Server 12 SP4-ESPOS:libdcerpc-binding0-4.6.16+git.393.97432483687-3.81.1

SUSE Linux Enterprise Server 12 SP4-ESPOS:libdcerpc0-32bit-4.6.16+git.393.97432483687-3.81.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-2127.html
CVE-2022-2127
https://bugzilla.suse.com/1213174
SUSE Bug 1213174

SUSE-SU-2023:2887-1

Описание

Список пакетов

SUSE Linux Enterprise High Availability Extension 12 SP4

SUSE Linux Enterprise Server 12 SP4-ESPOS

SUSE Linux Enterprise Server 12 SP4-LTSS

SUSE Linux Enterprise Server for SAP Applications 12 SP4

SUSE OpenStack Cloud 9

SUSE OpenStack Cloud Crowbar 9

Ссылки

Уязвимость: CVE-2022-2127

Описание

Затронутые продукты

Ссылки