Nome do pacote
samba
Data
2013-12-22
ID Alerta
MDVSA-2013:299
Versões afetadas
MBS1 x86_64

Descrição do problema

Multiple vulnerabilities has been discovered and corrected in samba:

The winbind_name_list_to_sid_string_list function in
nsswitch/pam_winbind.c in Samba through 4.1.2 handles invalid
require_membership_of group names by accepting authentication by
any user, which allows remote authenticated users to bypass intended
access restrictions in opportunistic circumstances by leveraging an
administrator's pam_winbind configuration-file mistake (CVE-2012-6150).

Buffer overflow in the dcerpc_read_ncacn_packet_done function in
librpc/rpc/dcerpc_util.c in winbindd in Samba 3.x before 3.6.22,
4.0.x before 4.0.13, and 4.1.x before 4.1.3 allows remote AD domain
controllers to execute arbitrary code via an invalid fragment length
in a DCE-RPC packet (CVE-2013-4408).

The updated packages has been upgraded to the 3.6.22 version which
resolves various upstream bugs and is not vulnerable to these issues.

Pacotes atualizados

MBS1 x86_64

 e75ca171513e6b1c54ad77fe0feeabe2  mbs1/x86_64/lib64netapi0-3.6.22-1.mbs1.x86_64.rpm
 dbfc96f66f6328db3597dea747915f24  mbs1/x86_64/lib64netapi-devel-3.6.22-1.mbs1.x86_64.rpm
 569452556235a2d00f3e31ca9244e99f  mbs1/x86_64/lib64smbclient0-3.6.22-1.mbs1.x86_64.rpm
 e45b969bcd034b37d6eea9e6438dc623  mbs1/x86_64/lib64smbclient0-devel-3.6.22-1.mbs1.x86_64.rpm
 61624e0bdb59db6a7b38ff6df9b528c0  mbs1/x86_64/lib64smbclient0-static-devel-3.6.22-1.mbs1.x86_64.rpm
 2cab4c1de652fdb153ffc171fd85cb13  mbs1/x86_64/lib64smbsharemodes0-3.6.22-1.mbs1.x86_64.rpm
 432de62da07d76a1c6caee4f5c86b98e  mbs1/x86_64/lib64smbsharemodes-devel-3.6.22-1.mbs1.x86_64.rpm
 ddd929553b7ae807428e9e172295a899  mbs1/x86_64/lib64wbclient0-3.6.22-1.mbs1.x86_64.rpm
 43bd4bd6c15d0dece283d1aec84a3714  mbs1/x86_64/lib64wbclient-devel-3.6.22-1.mbs1.x86_64.rpm
 586fcb19209338416273009e2d7b3c8b  mbs1/x86_64/nss_wins-3.6.22-1.mbs1.x86_64.rpm
 d6e2b27265691f111aa364e7ae5c5276  mbs1/x86_64/samba-client-3.6.22-1.mbs1.x86_64.rpm
 f66d7573d84f5238d3324748511ad2a4  mbs1/x86_64/samba-common-3.6.22-1.mbs1.x86_64.rpm
 07e7710d4b9295fb62e81f23ac723bea  mbs1/x86_64/samba-doc-3.6.22-1.mbs1.noarch.rpm
 67ff474d324a41753f5bdfaf63fd07b3  mbs1/x86_64/samba-domainjoin-gui-3.6.22-1.mbs1.x86_64.rpm
 e81a7bf8da697a055d2e980d54f7ab87  mbs1/x86_64/samba-server-3.6.22-1.mbs1.x86_64.rpm
 88f34c6bff167020ffa8cb2e8b3d6e6f  mbs1/x86_64/samba-swat-3.6.22-1.mbs1.x86_64.rpm
 dcd6bbf7a2fb1dd95fb02f21dfb9acd0  mbs1/x86_64/samba-virusfilter-clamav-3.6.22-1.mbs1.x86_64.rpm
 76ccda39bbf6b56e004e15f04ca9ff0d  mbs1/x86_64/samba-virusfilter-fsecure-3.6.22-1.mbs1.x86_64.rpm
 3dfe1d3ceb575288ebd711a021e20ce5  mbs1/x86_64/samba-virusfilter-sophos-3.6.22-1.mbs1.x86_64.rpm
 e9fd794dbc4491dd5ca595a6cee20479  mbs1/x86_64/samba-winbind-3.6.22-1.mbs1.x86_64.rpm 
 1c633723bd82487b385bdf65e6ef253c  mbs1/SRPMS/samba-3.6.22-1.mbs1.src.rpm

Referências