openSUSE-SU-2019:1292-1

Опубликовано: 29 апр. 2019

Источник: suse-cvrf

Описание

Security update for samba

This update for samba fixes the following issues:

Security issue fixed:

CVE-2019-3880: Fixed a path/symlink traversal vulnerability, which allowed an unprivileged user to save registry files outside a share (bsc#1131060).

Non-security issues fixed:

Fix vfs_ceph ftruncate and fallocate handling (bsc#1127153).
Abide by load_printers smb.conf parameter (bsc#1124223).
s3:winbindd: let normalize_name_map() call find_domain_from_name_noinit() (bsc#1123755).
s3:passdb: Do not return OK if we don't have pinfo set up (bsc#1099590).
s3:winbind: Fix regression (bsc#1123755).

This update was imported from the SUSE:SLE-12-SP3:Update update project.

Список пакетов

openSUSE Leap 42.3

ctdb-4.6.16+git.154.2998451b912-27.1

ctdb-tests-4.6.16+git.154.2998451b912-27.1

libdcerpc-binding0-4.6.16+git.154.2998451b912-27.1

libdcerpc-binding0-32bit-4.6.16+git.154.2998451b912-27.1

libdcerpc-devel-4.6.16+git.154.2998451b912-27.1

libdcerpc-samr-devel-4.6.16+git.154.2998451b912-27.1

libdcerpc-samr0-4.6.16+git.154.2998451b912-27.1

libdcerpc-samr0-32bit-4.6.16+git.154.2998451b912-27.1

libdcerpc0-4.6.16+git.154.2998451b912-27.1

libdcerpc0-32bit-4.6.16+git.154.2998451b912-27.1

libndr-devel-4.6.16+git.154.2998451b912-27.1

libndr-krb5pac-devel-4.6.16+git.154.2998451b912-27.1

libndr-krb5pac0-4.6.16+git.154.2998451b912-27.1

libndr-krb5pac0-32bit-4.6.16+git.154.2998451b912-27.1

libndr-nbt-devel-4.6.16+git.154.2998451b912-27.1

libndr-nbt0-4.6.16+git.154.2998451b912-27.1

libndr-nbt0-32bit-4.6.16+git.154.2998451b912-27.1

libndr-standard-devel-4.6.16+git.154.2998451b912-27.1

libndr-standard0-4.6.16+git.154.2998451b912-27.1

libndr-standard0-32bit-4.6.16+git.154.2998451b912-27.1

libndr0-4.6.16+git.154.2998451b912-27.1

libndr0-32bit-4.6.16+git.154.2998451b912-27.1

libnetapi-devel-4.6.16+git.154.2998451b912-27.1

libnetapi0-4.6.16+git.154.2998451b912-27.1

libnetapi0-32bit-4.6.16+git.154.2998451b912-27.1

libsamba-credentials-devel-4.6.16+git.154.2998451b912-27.1

libsamba-credentials0-4.6.16+git.154.2998451b912-27.1

libsamba-credentials0-32bit-4.6.16+git.154.2998451b912-27.1

libsamba-errors-devel-4.6.16+git.154.2998451b912-27.1

libsamba-errors0-4.6.16+git.154.2998451b912-27.1

libsamba-errors0-32bit-4.6.16+git.154.2998451b912-27.1

libsamba-hostconfig-devel-4.6.16+git.154.2998451b912-27.1

libsamba-hostconfig0-4.6.16+git.154.2998451b912-27.1

libsamba-hostconfig0-32bit-4.6.16+git.154.2998451b912-27.1

libsamba-passdb-devel-4.6.16+git.154.2998451b912-27.1

libsamba-passdb0-4.6.16+git.154.2998451b912-27.1

libsamba-passdb0-32bit-4.6.16+git.154.2998451b912-27.1

libsamba-policy-devel-4.6.16+git.154.2998451b912-27.1

libsamba-policy0-4.6.16+git.154.2998451b912-27.1

libsamba-policy0-32bit-4.6.16+git.154.2998451b912-27.1

libsamba-util-devel-4.6.16+git.154.2998451b912-27.1

libsamba-util0-4.6.16+git.154.2998451b912-27.1

libsamba-util0-32bit-4.6.16+git.154.2998451b912-27.1

libsamdb-devel-4.6.16+git.154.2998451b912-27.1

libsamdb0-4.6.16+git.154.2998451b912-27.1

libsamdb0-32bit-4.6.16+git.154.2998451b912-27.1

libsmbclient-devel-4.6.16+git.154.2998451b912-27.1

libsmbclient0-4.6.16+git.154.2998451b912-27.1

libsmbclient0-32bit-4.6.16+git.154.2998451b912-27.1

libsmbconf-devel-4.6.16+git.154.2998451b912-27.1

libsmbconf0-4.6.16+git.154.2998451b912-27.1

libsmbconf0-32bit-4.6.16+git.154.2998451b912-27.1

libsmbldap-devel-4.6.16+git.154.2998451b912-27.1

libsmbldap0-4.6.16+git.154.2998451b912-27.1

libsmbldap0-32bit-4.6.16+git.154.2998451b912-27.1

libtevent-util-devel-4.6.16+git.154.2998451b912-27.1

libtevent-util0-4.6.16+git.154.2998451b912-27.1

libtevent-util0-32bit-4.6.16+git.154.2998451b912-27.1

libwbclient-devel-4.6.16+git.154.2998451b912-27.1

libwbclient0-4.6.16+git.154.2998451b912-27.1

libwbclient0-32bit-4.6.16+git.154.2998451b912-27.1

samba-4.6.16+git.154.2998451b912-27.1

samba-ceph-4.6.16+git.154.2998451b912-27.1

samba-client-4.6.16+git.154.2998451b912-27.1

samba-client-32bit-4.6.16+git.154.2998451b912-27.1

samba-core-devel-4.6.16+git.154.2998451b912-27.1

samba-doc-4.6.16+git.154.2998451b912-27.1

samba-libs-4.6.16+git.154.2998451b912-27.1

samba-libs-32bit-4.6.16+git.154.2998451b912-27.1

samba-pidl-4.6.16+git.154.2998451b912-27.1

samba-python-4.6.16+git.154.2998451b912-27.1

samba-test-4.6.16+git.154.2998451b912-27.1

samba-winbind-4.6.16+git.154.2998451b912-27.1

samba-winbind-32bit-4.6.16+git.154.2998451b912-27.1

Ссылки

https://lists.opensuse.org/opensuse-security-announce/2019-04/msg00106.html
E-Mail link for openSUSE-SU-2019:1292-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. An unprivileged attacker could use this flaw to create a new registry hive file anywhere they have unix permissions which could lead to creation of a new file in the Samba share. Versions before 4.8.11, 4.9.6 and 4.10.2 are vulnerable.

Затронутые продукты

openSUSE Leap 42.3:ctdb-4.6.16+git.154.2998451b912-27.1

openSUSE Leap 42.3:ctdb-tests-4.6.16+git.154.2998451b912-27.1

openSUSE Leap 42.3:libdcerpc-binding0-32bit-4.6.16+git.154.2998451b912-27.1

openSUSE Leap 42.3:libdcerpc-binding0-4.6.16+git.154.2998451b912-27.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-3880.html
CVE-2019-3880
https://bugzilla.suse.com/1131060
SUSE Bug 1131060
https://bugzilla.suse.com/1139519
SUSE Bug 1139519

openSUSE-SU-2019:1292-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2019-3880

Описание

Затронутые продукты

Ссылки