Описание
Security update for samba
This update for samba fixes the following issues:
Security issue fixed:
- CVE-2019-10197: Fixed user escape from share path definition (bsc#1141267).
Bug fix:
- Prepare for future use of kernel keyrings, modify /etc/pam.d/samba to include pam_keyinit.so; (bsc#1144059).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
Список пакетов
openSUSE Leap 15.1
ctdb-4.9.5+git.187.71edee57d5a-lp151.2.6.1
ctdb-pcp-pmda-4.9.5+git.187.71edee57d5a-lp151.2.6.1
ctdb-tests-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libdcerpc-binding0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libdcerpc-binding0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libdcerpc-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libdcerpc-samr-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libdcerpc-samr0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libdcerpc-samr0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libdcerpc0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libdcerpc0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libndr-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libndr-krb5pac-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libndr-krb5pac0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libndr-krb5pac0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libndr-nbt-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libndr-nbt0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libndr-nbt0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libndr-standard-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libndr-standard0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libndr-standard0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libndr0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libndr0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libnetapi-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libnetapi0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libnetapi0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-credentials-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-credentials0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-credentials0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-errors-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-errors0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-errors0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-hostconfig-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-hostconfig0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-hostconfig0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-passdb-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-passdb0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-passdb0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-policy-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-policy-python-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-policy-python3-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-policy0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-policy0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-policy0-python3-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-policy0-python3-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-util-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-util0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamba-util0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamdb-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamdb0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsamdb0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsmbclient-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsmbclient0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsmbclient0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsmbconf-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsmbconf0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsmbconf0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsmbldap-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsmbldap2-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libsmbldap2-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libtevent-util-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libtevent-util0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libtevent-util0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libwbclient-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libwbclient0-4.9.5+git.187.71edee57d5a-lp151.2.6.1
libwbclient0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-ad-dc-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-ad-dc-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-ceph-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-client-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-client-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-core-devel-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-doc-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-dsdb-modules-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-libs-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-libs-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-libs-python-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-libs-python-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-libs-python3-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-libs-python3-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-pidl-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-python-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-python3-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-test-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-winbind-4.9.5+git.187.71edee57d5a-lp151.2.6.1
samba-winbind-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
Ссылки
- E-Mail link for openSUSE-SU-2019:2142-1
- SUSE Security Ratings
- SUSE Bug 1141267
- SUSE Bug 1144059
- SUSE CVE CVE-2019-10197 page
Описание
A flaw was found in samba versions 4.9.x up to 4.9.13, samba 4.10.x up to 4.10.8 and samba 4.11.x up to 4.11.0rc3, when certain parameters were set in the samba configuration file. An unauthenticated attacker could use this flaw to escape the shared directory and access the contents of directories outside the share.
Затронутые продукты
openSUSE Leap 15.1:ctdb-4.9.5+git.187.71edee57d5a-lp151.2.6.1
openSUSE Leap 15.1:ctdb-pcp-pmda-4.9.5+git.187.71edee57d5a-lp151.2.6.1
openSUSE Leap 15.1:ctdb-tests-4.9.5+git.187.71edee57d5a-lp151.2.6.1
openSUSE Leap 15.1:libdcerpc-binding0-32bit-4.9.5+git.187.71edee57d5a-lp151.2.6.1
Ссылки
- CVE-2019-10197
- SUSE Bug 1141267