Package samba: Information

    Source package: samba
    Version: 4.16.11-alt2
    Build time:  Jul 28, 2023, 06:39 PM in the task #325413
    Category: System/Servers
    Report package bug
    Gear: https://git.altlinux.org/gears/s/samba.git?a=tree;hb=b632ce68b22…
    Home page: http://www.samba.org/
    License: GPLv3+ and LGPLv3+
    Summary: The Samba4 CIFS and AD client and server suite
    Description: 
    Samba is the standard Windows interoperability suite of programs for Linux and Unix.
    List of rpms provided by this srpm:
    admx-samba (noarch)
    libldb-modules-dc (x86_64, i586, aarch64)
    libldb-modules-dc-debuginfo (x86_64, i586, aarch64)
    libsmbclient (x86_64, i586, aarch64)
    libsmbclient-debuginfo (x86_64, i586, aarch64)
    libsmbclient-devel (x86_64, i586, aarch64)
    libwbclient (x86_64, i586, aarch64)
    libwbclient-debuginfo (x86_64, i586, aarch64)
    libwbclient-devel (x86_64, i586, aarch64)
    python3-module-samba (x86_64, i586, aarch64)
    python3-module-samba-debuginfo (x86_64, i586, aarch64)
    python3-module-samba-devel (x86_64, i586, aarch64)
    samba (x86_64, i586, aarch64)
    samba-client (x86_64, i586, aarch64)
    samba-client-debuginfo (x86_64, i586, aarch64)
    samba-common (noarch)
    samba-common-client (noarch)
    samba-common-libs (x86_64, i586, aarch64)
    samba-common-libs-debuginfo (x86_64, i586, aarch64)
    samba-common-tools (x86_64, i586, aarch64)
    samba-common-tools-debuginfo (x86_64, i586, aarch64)
    samba-ctdb (x86_64, i586, aarch64)
    samba-ctdb-debuginfo (x86_64, i586, aarch64)
    samba-dc (x86_64, i586, aarch64)
    samba-dc-client (x86_64, i586, aarch64)
    samba-dc-common (noarch)
    samba-dc-debuginfo (x86_64, i586, aarch64)
    samba-dc-libs (x86_64, i586, aarch64)
    samba-dc-libs-debuginfo (x86_64, i586, aarch64)
    samba-dc-mitkrb5 (x86_64, i586, aarch64)
    samba-dc-mitkrb5-debuginfo (x86_64, i586, aarch64)
    samba-debuginfo (x86_64, i586, aarch64)
    samba-devel (x86_64, i586, aarch64)
    samba-doc (noarch)
    samba-krb5-printing (x86_64, i586, aarch64)
    samba-krb5-printing-debuginfo (x86_64, i586, aarch64)
    samba-libs (x86_64, i586, aarch64)
    samba-libs-debuginfo (x86_64, i586, aarch64)
    samba-pidl (noarch)
    samba-test (x86_64, i586, aarch64)
    samba-test-debuginfo (x86_64, i586, aarch64)
    samba-usershares (x86_64, i586, aarch64)
    samba-util-private-headers (x86_64, i586, aarch64)
    samba-vfs-cephfs (x86_64, aarch64)
    samba-vfs-cephfs-debuginfo (x86_64, aarch64)
    samba-vfs-glusterfs (x86_64, i586, aarch64)
    samba-vfs-glusterfs-debuginfo (x86_64, i586, aarch64)
    samba-vfs-snapper (x86_64, i586, aarch64)
    samba-vfs-snapper-debuginfo (x86_64, i586, aarch64)
    samba-winbind (x86_64, i586, aarch64)
    samba-winbind-clients (x86_64, i586, aarch64)
    samba-winbind-clients-debuginfo (x86_64, i586, aarch64)
    samba-winbind-common (x86_64, i586, aarch64)
    samba-winbind-debuginfo (x86_64, i586, aarch64)
    samba-winbind-krb5-localauth (x86_64, i586, aarch64)
    samba-winbind-krb5-localauth-debuginfo (x86_64, i586, aarch64)
    samba-winbind-krb5-locator (x86_64, i586, aarch64)
    samba-winbind-krb5-locator-debuginfo (x86_64, i586, aarch64)
    task-samba-dc (noarch)
    task-samba-dc-mitkrb5 (noarch)
    Maintainer: Evgeny Sinelnikov
    List of contributors:
    Evgeny Sinelnikov
    Ivan A. Melnikov
    Michael Shigorin
    Grigory Ustinov
    Alexey Shabalin
    Alexey Sheplyakov
    Andrey Cherepanov
    Igor Vlasenko
    Vitaly Kuznetsov
      1. python3-module-pyldb-devel
      2. libcap-devel
      3. python3-module-talloc-devel
      4. python3-module-tdb
      5. python3-module-tevent
      6. libreadline-devel
      7. glibc-devel
      8. glibc-kernheaders
      9. libcups-devel
      10. libdbus-devel
      11. html2text
      12. docbook-style-xsl
      13. /proc
      14. libssl-devel
      15. libe2fs-devel
      16. /usr/bin/rpcgen
      17. flex
      18. gawk
      19. rpm-build-python3
      20. perl-JSON
      21. perl-Parse-Yapp
      22. perl-devel
      23. admx-lint
      24. libglusterfs-api-devel
      25. libacl-devel
      26. libgnutls-devel
      27. libarchive-devel >= 3.1.2
      28. libgpgme-devel
      29. libattr-devel
      30. libavahi-devel
      31. libsystemd-devel
      32. libgtk+2-devel
      33. libtalloc-devel >= 2.3.3
      34. libtasn1-devel
      35. libtasn1-utils
      36. ceph-devel
      37. libtdb-devel >= 1.4.6
      38. libtevent-devel >= 0.12.0
      39. python3-devel
      40. krb5-kdc
      41. libtirpc-devel
      42. libiniparser-devel
      43. python3-module-dns
      44. libuuid-devel
      45. python3-module-markdown
      46. libjansson-devel
      47. dblatex
      48. libkrb5-devel
      49. libxslt
      50. libldap-devel
      51. libldb-devel = 2.5.3
      52. tracker-devel
      53. netpbm
      54. libncurses-devel
      55. xsltproc
      56. libpopt-devel
      57. zlib-devel
      58. libpam-devel

    Last changed

    July 23, 2023 Evgeny Sinelnikov 4.16.11-alt2
    - Add check with admx-lint for group policy templates validation.
    July 23, 2023 Evgeny Sinelnikov 4.16.11-alt1
    - Update to security release of Samba 4.16 (Closes: 46966):
  + Secure channel faulty since Windows 10/11 update 07/2023 (KB5028166).

- Security fixes (Samba#15418):
  + CVE-2022-2127:  When winbind is used for NTLM authentication, a maliciously
                    crafted request can trigger an out-of-bounds read in winbind
                    and possibly crash it.
                    https://www.samba.org/samba/security/CVE-2022-2127.html

  + CVE-2023-34966: An infinite loop bug in Samba's mdssvc RPC service for
                    Spotlight can be triggered by an unauthenticated attacker by
                    issuing a malformed RPC request.
                    https://www.samba.org/samba/security/CVE-2023-34966.html

  + CVE-2023-34967: Missing type validation in Samba's mdssvc RPC service for
                    Spotlight can be used by an unauthenticated attacker to
                    trigger a process crash in a shared RPC mdssvc worker process.
                    https://www.samba.org/samba/security/CVE-2023-34967.html

  + CVE-2023-34968: As part of the Spotlight protocol Samba discloses the server-
                    side absolute path of shares and files and directories in
                    search results.
                    https://www.samba.org/samba/security/CVE-2023-34968.html
    March 29, 2023 Evgeny Sinelnikov 4.16.10-alt1
    - Update to security release of Samba 4.16 with update libldb to 2.5.3:
  + ldb wildcard matching makes excessive allocations (Samba#15331).

- Security fixes (Samba#15270, Samba#15315):
  + CVE-2023-0922: The Samba AD DC administration tool, when operating against a
                   remote LDAP server, will by default send new or reset
                   passwords over a signed-only connection.
                   https://www.samba.org/samba/security/CVE-2023-0922.html

  + CVE-2023-0614: The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919
                   Confidential attribute disclosure via LDAP filters was
                   insufficient and an attacker may be able to obtain
                   confidential BitLocker recovery keys from a Samba AD DC.
                   Installations with such secrets in their Samba AD should
                   assume they have been obtained and need replacing.
                   https://www.samba.org/samba/security/CVE-2023-0614.html
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v24.5.3
    Back to top