(RHSA-2021:3724) Moderate: samba security, bug fix and enhancement update

2021-10-0504:55:53

access.redhat.com

6.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

4.9 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:P/A:N

0.004 Low

EPSS

Percentile

74.0%

JSON

Red Hat Gluster Storage is a software only scale-out storage solution that provides flexible and affordable unstructured data storage. It unifies data storage and infrastructure, increases performance, and improves availability and manageability to meet enterprise-level storage challenges.

Security Fix(es):

samba: Negative idmap cache entries can cause incorrect group entries in the Samba file server process token (CVE-2021-20254)

Users of samba with Red Hat Gluster Storage are advised to upgrade to these updated packages.

OSVersionArchitecturePackageVersionFilename
RedHat8x86_64libtalloc-debugsource< 2.3.2-5.el8rhgslibtalloc-debugsource-2.3.2-5.el8rhgs.x86_64.rpm
RedHat8x86_64samba-winbind-clients< 4.14.5-201.el8rhgssamba-winbind-clients-4.14.5-201.el8rhgs.x86_64.rpm
RedHat8x86_64libwbclient-debuginfo< 4.14.5-201.el8rhgslibwbclient-debuginfo-4.14.5-201.el8rhgs.x86_64.rpm
RedHat8x86_64samba< 4.14.5-201.el8rhgssamba-4.14.5-201.el8rhgs.x86_64.rpm
RedHat8x86_64python3-talloc-devel< 2.3.2-5.el8rhgspython3-talloc-devel-2.3.2-5.el8rhgs.x86_64.rpm
RedHat8x86_64samba-test-libs-debuginfo< 4.14.5-201.el8rhgssamba-test-libs-debuginfo-4.14.5-201.el8rhgs.x86_64.rpm
RedHat8x86_64libwbclient-devel< 4.14.5-201.el8rhgslibwbclient-devel-4.14.5-201.el8rhgs.x86_64.rpm
RedHat8x86_64samba-libs-debuginfo< 4.14.5-201.el8rhgssamba-libs-debuginfo-4.14.5-201.el8rhgs.x86_64.rpm
RedHat8x86_64libtalloc< 2.3.2-5.el8rhgslibtalloc-2.3.2-5.el8rhgs.x86_64.rpm
RedHat8x86_64libwbclient< 4.14.5-201.el8rhgslibwbclient-4.14.5-201.el8rhgs.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	x86_64	libtalloc-debugsource	< 2.3.2-5.el8rhgs	libtalloc-debugsource-2.3.2-5.el8rhgs.x86_64.rpm
RedHat	8	x86_64	samba-winbind-clients	< 4.14.5-201.el8rhgs	samba-winbind-clients-4.14.5-201.el8rhgs.x86_64.rpm
RedHat	8	x86_64	libwbclient-debuginfo	< 4.14.5-201.el8rhgs	libwbclient-debuginfo-4.14.5-201.el8rhgs.x86_64.rpm
RedHat	8	x86_64	samba	< 4.14.5-201.el8rhgs	samba-4.14.5-201.el8rhgs.x86_64.rpm
RedHat	8	x86_64	python3-talloc-devel	< 2.3.2-5.el8rhgs	python3-talloc-devel-2.3.2-5.el8rhgs.x86_64.rpm
RedHat	8	x86_64	samba-test-libs-debuginfo	< 4.14.5-201.el8rhgs	samba-test-libs-debuginfo-4.14.5-201.el8rhgs.x86_64.rpm
RedHat	8	x86_64	libwbclient-devel	< 4.14.5-201.el8rhgs	libwbclient-devel-4.14.5-201.el8rhgs.x86_64.rpm
RedHat	8	x86_64	samba-libs-debuginfo	< 4.14.5-201.el8rhgs	samba-libs-debuginfo-4.14.5-201.el8rhgs.x86_64.rpm
RedHat	8	x86_64	libtalloc	< 2.3.2-5.el8rhgs	libtalloc-2.3.2-5.el8rhgs.x86_64.rpm
RedHat	8	x86_64	libwbclient	< 4.14.5-201.el8rhgs	libwbclient-4.14.5-201.el8rhgs.x86_64.rpm