Lucene search

DebianDEBIAN:DSA-5647-1:3A482

HistoryMar 24, 2024 - 8:22 p.m.

[SECURITY] [DSA 5647-1] samba security update

2024-03-2420:22:16

lists.debian.org

cve-2023-4091

cve-2022-2127

unix

samba

cve-2022-3437

debian

cve-2023-34966

denial of service

debian security advisory

information disclosure

cve-2023-34967

security update

package upgrade

cve-2023-34968

smb/cifs

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.025 Low

EPSS

Percentile

90.0%

JSON

Debian Security Advisory DSA-5647-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
March 24, 2024 https://www.debian.org/security/faq

Package : samba
CVE ID : CVE-2022-2127 CVE-2022-3437 CVE-2023-4091 CVE-2023-34966
CVE-2023-34967 CVE-2023-34968

Several vulnerabilities have been discovered in Samba, a SMB/CIFS file,
print, and login server for Unix, which might result in denial of service
or information disclosure.

For the oldstable distribution (bullseye), these problems have been fixed
in version 2:4.13.13+dfsg-1~deb11u6.

We recommend that you upgrade your samba packages.

For the detailed security status of samba please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/samba

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian11allpython3-samba< 2:4.13.13+dfsg-1~deb11u6python3-samba_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian11allregistry-tools< 2:4.13.13+dfsg-1~deb11u6registry-tools_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian11allsamba-libs< 2:4.13.13+dfsg-1~deb11u6samba-libs_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian11allctdb< 2:4.13.13+dfsg-1~deb11u6ctdb_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian11allsamba-dev< 2:4.13.13+dfsg-1~deb11u6samba-dev_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian11alllibpam-winbind< 2:4.13.13+dfsg-1~deb11u6libpam-winbind_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian11alllibnss-winbind< 2:4.13.13+dfsg-1~deb11u6libnss-winbind_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian11allsamba-common-bin< 2:4.13.13+dfsg-1~deb11u6samba-common-bin_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian11allwinbind< 2:4.13.13+dfsg-1~deb11u6winbind_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian11allsamba-testsuite< 2:4.13.13+dfsg-1~deb11u6samba-testsuite_2:4.13.13+dfsg-1~deb11u6_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	11	all	python3-samba	< 2:4.13.13+dfsg-1~deb11u6	python3-samba_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian	11	all	registry-tools	< 2:4.13.13+dfsg-1~deb11u6	registry-tools_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian	11	all	samba-libs	< 2:4.13.13+dfsg-1~deb11u6	samba-libs_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian	11	all	ctdb	< 2:4.13.13+dfsg-1~deb11u6	ctdb_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian	11	all	samba-dev	< 2:4.13.13+dfsg-1~deb11u6	samba-dev_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian	11	all	libpam-winbind	< 2:4.13.13+dfsg-1~deb11u6	libpam-winbind_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian	11	all	libnss-winbind	< 2:4.13.13+dfsg-1~deb11u6	libnss-winbind_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian	11	all	samba-common-bin	< 2:4.13.13+dfsg-1~deb11u6	samba-common-bin_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian	11	all	winbind	< 2:4.13.13+dfsg-1~deb11u6	winbind_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian	11	all	samba-testsuite	< 2:4.13.13+dfsg-1~deb11u6	samba-testsuite_2:4.13.13+dfsg-1~deb11u6_all.deb