openSUSE-SU-2021:3650-1

Опубликовано: 10 нояб. 2021

Источник: suse-cvrf

Описание

Security update for samba

This update for samba fixes the following issues:

CVE-2016-2124: Fixed not to fallback to non spnego authentication if we require kerberos (bsc#1014440).
CVE-2020-25717: Fixed privilege escalation inside an AD Domain where a user could become root on domain members (bsc#1192284).
CVE-2021-23192: Fixed dcerpc requests to don't check all fragments against the first auth_state (bsc#1192214).

Список пакетов

openSUSE Leap 15.3

libndr0-4.11.14+git.308.666c63d4eea-4.28.1

libndr0-32bit-4.11.14+git.308.666c63d4eea-4.28.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/7ZU5FWTEOBTHR7WNP3HEICT3NJTBNV2V/
E-Mail link for openSUSE-SU-2021:3650-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1014440
SUSE Bug 1014440
https://bugzilla.suse.com/1192214
SUSE Bug 1192214
https://bugzilla.suse.com/1192284
SUSE Bug 1192284
https://www.suse.com/security/cve/CVE-2016-2124/
SUSE CVE CVE-2016-2124 page
https://www.suse.com/security/cve/CVE-2020-25717/
SUSE CVE CVE-2020-25717 page
https://www.suse.com/security/cve/CVE-2021-23192/
SUSE CVE CVE-2021-23192 page

Описание

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

Затронутые продукты

openSUSE Leap 15.3:libndr0-32bit-4.11.14+git.308.666c63d4eea-4.28.1

openSUSE Leap 15.3:libndr0-4.11.14+git.308.666c63d4eea-4.28.1

Ссылки

https://www.suse.com/security/cve/CVE-2016-2124.html
CVE-2016-2124
https://bugzilla.suse.com/1014440
SUSE Bug 1014440

Описание

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.

Затронутые продукты

openSUSE Leap 15.3:libndr0-32bit-4.11.14+git.308.666c63d4eea-4.28.1

openSUSE Leap 15.3:libndr0-4.11.14+git.308.666c63d4eea-4.28.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-25717.html
CVE-2020-25717
https://bugzilla.suse.com/1192284
SUSE Bug 1192284
https://bugzilla.suse.com/1192505
SUSE Bug 1192505
https://bugzilla.suse.com/1192601
SUSE Bug 1192601
https://bugzilla.suse.com/1192849
SUSE Bug 1192849
https://bugzilla.suse.com/1193011
SUSE Bug 1193011
https://bugzilla.suse.com/1194049
SUSE Bug 1194049
https://bugzilla.suse.com/1194307
SUSE Bug 1194307
https://bugzilla.suse.com/1195815
SUSE Bug 1195815
https://bugzilla.suse.com/1196344
SUSE Bug 1196344
https://bugzilla.suse.com/1196717
SUSE Bug 1196717
https://bugzilla.suse.com/1196920
SUSE Bug 1196920
https://bugzilla.suse.com/1205061
SUSE Bug 1205061

Описание

A flaw was found in the way samba implemented DCE/RPC. If a client to a Samba server sent a very large DCE/RPC request, and chose to fragment it, an attacker could replace later fragments with their own data, bypassing the signature requirements.

Затронутые продукты

openSUSE Leap 15.3:libndr0-32bit-4.11.14+git.308.666c63d4eea-4.28.1

openSUSE Leap 15.3:libndr0-4.11.14+git.308.666c63d4eea-4.28.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-23192.html
CVE-2021-23192
https://bugzilla.suse.com/1192214
SUSE Bug 1192214

openSUSE-SU-2021:3650-1

Описание

Список пакетов

openSUSE Leap 15.3

Ссылки

Уязвимость: CVE-2016-2124

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2020-25717

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2021-23192

Описание

Затронутые продукты

Ссылки