Lucene search

K
oraclelinuxOracleLinuxELSA-2017-1950
HistoryAug 07, 2017 - 12:00 a.m.

samba security, bug fix, and enhancement update

2017-08-0700:00:00
linux.oracle.com
78

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.973 High

EPSS

Percentile

99.8%

[4.6.2-8]

  • resolves: #1459936 - Fix regression with ‘follow symlinks = no’
    [4.6.2-7]
  • resolves: #1461336 - Fix smbclient username parsing
  • resolves: #1460937 - Fix username normalization with winbind
    [4.6.2-6]
  • resolves: #1459179 - Fix smbclient session setup printing
    [4.6.2-5]
  • related: #1277999 - Add missing patchset
    [4.6.2-4]
  • resolves: #1431986 - Fix expand_msdfs VFS module
    [4.6.2-3]
  • resolves: #1450785 - Security fix for CVE-2017-7494
    [4.6.2-2]
  • resolves: #1448544 - Fix spoolss 32bit driver upload
    [4.6.2-1]
  • resolves: #1435734 - Fix refreshing winbind tickets
    [4.6.2-0]
  • Update to Samba 4.6.2
  • related: #1430260 - Security fix for CVE-2017-2619
    [4.6.1-0]
  • Update to Samba 4.6.1
  • resolves: #1430260 - Security fix for CVE-2017-2619
    [4.6.0-5]
  • related: #1391954 - Fix kerberos cross-realm referrals
  • resolves: #1430755 - Fix ‘net ads’ keytab handling
    [4.6.0-4]
  • Export internal arcfour_crypt_blob in Python as samba.arcfour_encrypt
  • related: #1391954 - Update to Samba 4.6.0
    [4.6.0-3]
  • Ensure we set realm when updating ccache in auth/credentials
  • resolves: #1430759 - use GSSAPI gss_acquire_cred_from call for gssproxy support
    [4.6.0-2]
  • resolves: #1430759 - use GSSAPI gss_acquire_cred_from call for gssproxy support
    [4.6.0-1]
  • related: #1391954 - Update to Samba 4.6.0
  • resolves: #1401505 - Improved idmap_hash documentation
  • resolves: #1218926 - Samba ignores default_keytab_name in krb5.conf
  • resolves: #1389786 - Add ‘net ads dns unregister’
    [4.6.0-0.1.rc4]
  • related: #1391954 - Update to Samba 4.6.0rc4
  • resolves: #1420130 - samba_krb5_wrapper does not list devices when called with
    no arguments
  • resolves: #1277999 - Change RPC port range to Windows defaults
    [4.6.0-0.1.rc3]
  • resolves: #1391954 - Update to Samba 4.6.0rc3
  • resolves: #1271082 - Wrong groups listed when id command is called before login
  • resolves: #1327810 - Use ‘printcap cache time’ for the house keeping interval
  • resolves: #1356932 - Improve documentation for ‘ldap ssl’ in smb.conf manpage
  • resolves: #1365111 - Fix printer removal if ‘List in Directory’ checkbox is
    unticked and printer is not listed in AD
  • resolves: #1368439 - Fix ntlm_auth wrong password issues
  • resolves: #1397871 - Include the system krb5.conf in winbinds generated conf
  • resolves: #1397891 - Fix marsalling of spoolss SetPrinter info level 2
  • resolves: #1397895 - Add missing support APD_COPY_FROM_DIRECTORY in
    AddPrinterDriver
  • resolves: #1403242 - Samba can not access trusted domains through transitive
    trusts
  • resolves: #1403975 - Fix trusted domain logins
  • resolves: #1411978 - Include the system krb5.conf in winbinds generated conf
  • resolves: #1416746 - Fix division by zero error in ctdb 05.system event script

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.973 High

EPSS

Percentile

99.8%