Описание
Security update for samba
This update for samba fixes the following issues:
- CVE-2020-10745: Fixed an issue which parsing and packing of NBT and DNS packets containing dots could potentially have consumed excessive CPU (bsc#1173160).
- CVE-2020-14303: Fixed an endless loop when receiving at AD DC empty UDP packets (bsc#1173359).
- CVE-2020-10730: Fixed a null de-reference in AD DC LDAP server when ASQ and VLV combined (bsc#1173159).
- CVE-2020-10760: Fixed a use-after-free in AD DC Global Catalog LDAP server with paged_result or VLV (bsc#1173161).
- Added libnetapi-devel to baselibs conf, for wine usage (bsc#1172307).
- Fixed an installing issue where samba - samba-ad-dc.service did not exist and unit was not found (bsc#1171437).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
Список пакетов
openSUSE Leap 15.1
ctdb-4.9.5+git.343.4bc358522a9-lp151.2.27.1
ctdb-pcp-pmda-4.9.5+git.343.4bc358522a9-lp151.2.27.1
ctdb-tests-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libdcerpc-binding0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libdcerpc-binding0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libdcerpc-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libdcerpc-samr-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libdcerpc-samr0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libdcerpc-samr0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libdcerpc0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libdcerpc0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libndr-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libndr-krb5pac-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libndr-krb5pac0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libndr-krb5pac0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libndr-nbt-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libndr-nbt0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libndr-nbt0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libndr-standard-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libndr-standard0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libndr-standard0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libndr0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libndr0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libnetapi-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libnetapi-devel-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libnetapi0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libnetapi0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-credentials-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-credentials0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-credentials0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-errors-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-errors0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-errors0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-hostconfig-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-hostconfig0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-hostconfig0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-passdb-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-passdb0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-passdb0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-policy-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-policy-python-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-policy-python3-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-policy0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-policy0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-policy0-python3-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-policy0-python3-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-util-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-util0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamba-util0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamdb-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamdb0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsamdb0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsmbclient-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsmbclient0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsmbclient0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsmbconf-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsmbconf0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsmbconf0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsmbldap-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsmbldap2-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libsmbldap2-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libtevent-util-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libtevent-util0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libtevent-util0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libwbclient-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libwbclient0-4.9.5+git.343.4bc358522a9-lp151.2.27.1
libwbclient0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-ad-dc-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-ad-dc-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-ceph-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-client-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-client-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-core-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-doc-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-dsdb-modules-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-libs-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-libs-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-libs-python-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-libs-python-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-libs-python3-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-libs-python3-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-pidl-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-python-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-python3-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-test-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-winbind-4.9.5+git.343.4bc358522a9-lp151.2.27.1
samba-winbind-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
Ссылки
- E-Mail link for openSUSE-SU-2020:0984-1
- SUSE Security Ratings
- SUSE Bug 1171437
- SUSE Bug 1172307
- SUSE Bug 1173159
- SUSE Bug 1173160
- SUSE Bug 1173161
- SUSE Bug 1173359
- SUSE CVE CVE-2020-10730 page
- SUSE CVE CVE-2020-10745 page
- SUSE CVE CVE-2020-10760 page
- SUSE CVE CVE-2020-14303 page
Описание
A NULL pointer dereference, or possible use-after-free flaw was found in Samba AD LDAP server in versions before 4.10.17, before 4.11.11 and before 4.12.4. Although some versions of Samba shipped with Red Hat Enterprise Linux do not support Samba in AD mode, the affected code is shipped with the libldb package. This flaw allows an authenticated user to possibly trigger a use-after-free or NULL pointer dereference. The highest threat from this vulnerability is to system availability.
Затронутые продукты
openSUSE Leap 15.1:ctdb-4.9.5+git.343.4bc358522a9-lp151.2.27.1
openSUSE Leap 15.1:ctdb-pcp-pmda-4.9.5+git.343.4bc358522a9-lp151.2.27.1
openSUSE Leap 15.1:ctdb-tests-4.9.5+git.343.4bc358522a9-lp151.2.27.1
openSUSE Leap 15.1:libdcerpc-binding0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
Ссылки
- CVE-2020-10730
- SUSE Bug 1173159
Описание
A flaw was found in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4 in the way it processed NetBios over TCP/IP. This flaw allows a remote attacker could to cause the Samba server to consume excessive CPU use, resulting in a denial of service. This highest threat from this vulnerability is to system availability.
Затронутые продукты
openSUSE Leap 15.1:ctdb-4.9.5+git.343.4bc358522a9-lp151.2.27.1
openSUSE Leap 15.1:ctdb-pcp-pmda-4.9.5+git.343.4bc358522a9-lp151.2.27.1
openSUSE Leap 15.1:ctdb-tests-4.9.5+git.343.4bc358522a9-lp151.2.27.1
openSUSE Leap 15.1:libdcerpc-binding0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
Ссылки
- CVE-2020-10745
- SUSE Bug 1173160
Описание
A use-after-free flaw was found in all samba LDAP server versions before 4.10.17, before 4.11.11, before 4.12.4 used in a AC DC configuration. A Samba LDAP user could use this flaw to crash samba.
Затронутые продукты
openSUSE Leap 15.1:ctdb-4.9.5+git.343.4bc358522a9-lp151.2.27.1
openSUSE Leap 15.1:ctdb-pcp-pmda-4.9.5+git.343.4bc358522a9-lp151.2.27.1
openSUSE Leap 15.1:ctdb-tests-4.9.5+git.343.4bc358522a9-lp151.2.27.1
openSUSE Leap 15.1:libdcerpc-binding0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
Ссылки
- CVE-2020-10760
- SUSE Bug 1173161
Описание
A flaw was found in the AD DC NBT server in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4. A samba user could send an empty UDP packet to cause the samba server to crash.
Затронутые продукты
openSUSE Leap 15.1:ctdb-4.9.5+git.343.4bc358522a9-lp151.2.27.1
openSUSE Leap 15.1:ctdb-pcp-pmda-4.9.5+git.343.4bc358522a9-lp151.2.27.1
openSUSE Leap 15.1:ctdb-tests-4.9.5+git.343.4bc358522a9-lp151.2.27.1
openSUSE Leap 15.1:libdcerpc-binding0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1
Ссылки
- CVE-2020-14303
- SUSE Bug 1173359