(RHSA-2019:1967) Moderate: samba security, bug fix and enhancement update

2019-07-3010:16:50

access.redhat.com

151

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

5.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:P/A:P

0.002 Low

EPSS

Percentile

60.7%

JSON

Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information.

Security Fix(es):

samba: save registry file outside share as unprivileged user (CVE-2019-3880)

For more details about the security issue(s), including the impact, a CVSS the score and other related information refer to the CVE page(s) listed in the References section.

Bug Fix(es):

The samba and CTDB packages have been upgraded to upstream version 4.9.8, which provide a number of bug fixes and enhancements over the previous release, including numerous changes to the CTDB configuration. See the Solution section for a link to the Knowledge Base article to aid in migration. (BZ#1708284)

Users of Samba with Red Hat Gluster Storage are advised to upgrade to these updated packages.

OSVersionArchitecturePackageVersionFilename
RedHat6x86_64samba-common-tools< 4.9.8-105.el6rhssamba-common-tools-4.9.8-105.el6rhs.x86_64.rpm
RedHat6x86_64python-tevent< 0.9.37-3.el6rhspython-tevent-0.9.37-3.el6rhs.x86_64.rpm
RedHat6x86_64samba-winbind-clients< 4.9.8-105.el6rhssamba-winbind-clients-4.9.8-105.el6rhs.x86_64.rpm
RedHat6x86_64samba-python< 4.9.8-105.el6rhssamba-python-4.9.8-105.el6rhs.x86_64.rpm
RedHat6x86_64samba-devel< 4.9.8-105.el6rhssamba-devel-4.9.8-105.el6rhs.x86_64.rpm
RedHat6x86_64libwbclient-devel< 4.9.8-105.el6rhslibwbclient-devel-4.9.8-105.el6rhs.x86_64.rpm
RedHat6x86_64libtalloc< 2.1.14-3.el6rhslibtalloc-2.1.14-3.el6rhs.x86_64.rpm
RedHat6x86_64libtdb< 1.3.16-3.el6rhslibtdb-1.3.16-3.el6rhs.x86_64.rpm
RedHat6x86_64python-tdb< 1.3.16-3.el6rhspython-tdb-1.3.16-3.el6rhs.x86_64.rpm
RedHat6x86_64samba-dc< 4.9.8-105.el6rhssamba-dc-4.9.8-105.el6rhs.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	6	x86_64	samba-common-tools	< 4.9.8-105.el6rhs	samba-common-tools-4.9.8-105.el6rhs.x86_64.rpm
RedHat	6	x86_64	python-tevent	< 0.9.37-3.el6rhs	python-tevent-0.9.37-3.el6rhs.x86_64.rpm
RedHat	6	x86_64	samba-winbind-clients	< 4.9.8-105.el6rhs	samba-winbind-clients-4.9.8-105.el6rhs.x86_64.rpm
RedHat	6	x86_64	samba-python	< 4.9.8-105.el6rhs	samba-python-4.9.8-105.el6rhs.x86_64.rpm
RedHat	6	x86_64	samba-devel	< 4.9.8-105.el6rhs	samba-devel-4.9.8-105.el6rhs.x86_64.rpm
RedHat	6	x86_64	libwbclient-devel	< 4.9.8-105.el6rhs	libwbclient-devel-4.9.8-105.el6rhs.x86_64.rpm
RedHat	6	x86_64	libtalloc	< 2.1.14-3.el6rhs	libtalloc-2.1.14-3.el6rhs.x86_64.rpm
RedHat	6	x86_64	libtdb	< 1.3.16-3.el6rhs	libtdb-1.3.16-3.el6rhs.x86_64.rpm
RedHat	6	x86_64	python-tdb	< 1.3.16-3.el6rhs	python-tdb-1.3.16-3.el6rhs.x86_64.rpm
RedHat	6	x86_64	samba-dc	< 4.9.8-105.el6rhs	samba-dc-4.9.8-105.el6rhs.x86_64.rpm