Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Fedora 29 Samba Update for CVE-2019-3870 and CVE-2019-3880 Critical Issues

fedora
Calendar Grey April 16, 2019
Dist Fedora Esm H88
Samba 4.9.6 patches for Fedora 29 tackle serious security vulnerabilities, fixing CVE-2019-3871 and CVE-2019-3881.
Update to Samba 4.9.6, Security fixes for CVE-2019-3870 and CVE-2019-3880

Summary

Samba is the standard Windows interoperability suite of programs for Linux and

Unix.

Update to Samba 4.9.6, Security fixes for CVE-2019-3870 and CVE-2019-3880

* Mon Apr 8 2019 Guenther Deschner - 4.9.6-0

- Update to Samba 4.9.6

- resolves: #1689010, #1697718 - Security fixes for CVE-2019-3870

- resolves: #1691518, #1697717 - Security fixes for CVE-2019-3880

* Tue Mar 12 2019 Guenther Deschner - 4.9.5-0

- Update to Samba 4.9.5

* Tue Feb 12 2019 Guenther Deschner - 4.9.4-1

- resolves: #1674547 - Move samba.xattr modules out of python3 test package

* Thu Dec 20 2018 Guenther Deschner - 4.9.4-0

- Update to Samba 4.9.4

* Tue Nov 27 2018 Guenther Deschner - 4.9.3-0

- Update to Samba 4.9.3

- resolves: #1625449, #1654078 - Security fixes for CVE-2018-14629

- resolves: #1642545, #1654082 - Security fixes for CVE-2018-16841

- resolves: #1646377, #1654091 - Security fixes for CVE-2018-16851

- resolves: #1646386, #1654092 - Security fixes for CVE-2018-16852

- resolves: #1647246, #1654093 - Security fixes for CVE-2018-16853

- resolves: #1649278, #1654095 - Security fixes for CVE-2018-16857

* Thu Nov 8 2018 Guenther Deschner - 4.9.2-0

- Update to Samba 4.9.2

[ 1 ] Bug #1689010 - CVE-2019-3870 samba: World writable files in Samba AD DC private/ dir

https://bugzilla.redhat.com/show_bug.cgi?id=1689010

[ 2 ] Bug #1691518 - CVE-2019-3880 samba: save registry file outside share as unprivileged user

https://bugzilla.redhat.com/show_bug.cgi?id=1691518

su -c 'dnf upgrade --advisory FEDORA-2019-db21b5f1d2' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Topics%20covered

Topics Covered

security advisory critical Fedora remote code execution DoS samba security fix

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 29
Version: 4.9.6
Release: 0.fc29
URL:
Summary: Server and Client software to interoperate with Windows machines

Topics%20covered

Topics Covered

security advisory critical Fedora remote code execution DoS samba security fix

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here