Lucene search

RedHatRHSA-2024:0580

HistoryJan 30, 2024 - 12:53 p.m.

(RHSA-2024:0580) Moderate: samba security update

2024-01-3012:53:22

access.redhat.com

samba

security update

out-of-bounds read

infinite loop

type confusion

path disclosure

unix

smb protocol

cifs protocol

pc-compatible machines

file sharing

printers

cve-2022-2127

cve-2023-34966

cve-2023-34967

cve-2023-34968

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.1 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.027 Low

EPSS

Percentile

90.4%

JSON

Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information.

Security Fix(es):

samba: out-of-bounds read in winbind AUTH_CRAP (CVE-2022-2127)
samba: infinite loop in mdssvc RPC service for spotlight (CVE-2023-34966)
samba: type confusion in mdssvc RPC service for spotlight (CVE-2023-34967)
samba: spotlight server-side share path disclosure (CVE-2023-34968)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat8ppc64lesamba-krb5-printing-debuginfo< 4.17.5-5.el8_8samba-krb5-printing-debuginfo-4.17.5-5.el8_8.ppc64le.rpm
RedHat8aarch64samba-dcerpc-debuginfo< 4.17.5-5.el8_8samba-dcerpc-debuginfo-4.17.5-5.el8_8.aarch64.rpm
RedHat8x86_64samba-winbind-krb5-locator< 4.17.5-5.el8_8samba-winbind-krb5-locator-4.17.5-5.el8_8.x86_64.rpm
RedHat8aarch64samba-winbind-krb5-locator-debuginfo< 4.17.5-5.el8_8samba-winbind-krb5-locator-debuginfo-4.17.5-5.el8_8.aarch64.rpm
RedHat8x86_64samba-winbind-clients-debuginfo< 4.17.5-5.el8_8samba-winbind-clients-debuginfo-4.17.5-5.el8_8.x86_64.rpm
RedHat8ppc64lectdb-debuginfo< 4.17.5-5.el8_8ctdb-debuginfo-4.17.5-5.el8_8.ppc64le.rpm
RedHat8s390xpython3-samba< 4.17.5-5.el8_8python3-samba-4.17.5-5.el8_8.s390x.rpm
RedHat8noarchsamba-pidl< 4.17.5-5.el8_8samba-pidl-4.17.5-5.el8_8.noarch.rpm
RedHat8x86_64samba-ldb-ldap-modules< 4.17.5-5.el8_8samba-ldb-ldap-modules-4.17.5-5.el8_8.x86_64.rpm
RedHat8x86_64samba-usershares< 4.17.5-5.el8_8samba-usershares-4.17.5-5.el8_8.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	ppc64le	samba-krb5-printing-debuginfo	< 4.17.5-5.el8_8	samba-krb5-printing-debuginfo-4.17.5-5.el8_8.ppc64le.rpm
RedHat	8	aarch64	samba-dcerpc-debuginfo	< 4.17.5-5.el8_8	samba-dcerpc-debuginfo-4.17.5-5.el8_8.aarch64.rpm
RedHat	8	x86_64	samba-winbind-krb5-locator	< 4.17.5-5.el8_8	samba-winbind-krb5-locator-4.17.5-5.el8_8.x86_64.rpm
RedHat	8	aarch64	samba-winbind-krb5-locator-debuginfo	< 4.17.5-5.el8_8	samba-winbind-krb5-locator-debuginfo-4.17.5-5.el8_8.aarch64.rpm
RedHat	8	x86_64	samba-winbind-clients-debuginfo	< 4.17.5-5.el8_8	samba-winbind-clients-debuginfo-4.17.5-5.el8_8.x86_64.rpm
RedHat	8	ppc64le	ctdb-debuginfo	< 4.17.5-5.el8_8	ctdb-debuginfo-4.17.5-5.el8_8.ppc64le.rpm
RedHat	8	s390x	python3-samba	< 4.17.5-5.el8_8	python3-samba-4.17.5-5.el8_8.s390x.rpm
RedHat	8	noarch	samba-pidl	< 4.17.5-5.el8_8	samba-pidl-4.17.5-5.el8_8.noarch.rpm
RedHat	8	x86_64	samba-ldb-ldap-modules	< 4.17.5-5.el8_8	samba-ldb-ldap-modules-4.17.5-5.el8_8.x86_64.rpm
RedHat	8	x86_64	samba-usershares	< 4.17.5-5.el8_8	samba-usershares-4.17.5-5.el8_8.x86_64.rpm