-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

====================================================================                   Red Hat Security Advisory

Synopsis:          Moderate: samba security, bug fix, and enhancement update
Advisory ID:       RHSA-2022:2074-01
Product:           Red Hat Enterprise Linux
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:2074
Issue date:        2022-05-10
CVE Names:         CVE-2021-20316 CVE-2021-44141 
====================================================================
1. Summary:

An update for samba is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat CodeReady Linux Builder (v. 8) - aarch64, ppc64le, s390x, x86_64
Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64
Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

Samba is an open-source implementation of the Server Message Block (SMB)
protocol and the related Common Internet File System (CIFS) protocol, which
allow PC-compatible machines to share files, printers, and various
information.

The following packages have been upgraded to a later upstream version:
samba (4.15.5). (BZ#2013596)

Security Fix(es):

* samba: Symlink race error can allow metadata read and modify outside of
the exported share (CVE-2021-20316)

* samba: Information leak via symlinks of existance of files or directories
outside of the exported share (CVE-2021-44141)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat
Enterprise Linux 8.6 Release Notes linked from the References section.

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing this update, the smb service will be restarted
automatically.

5. Bugs fixed (https://bugzilla.redhat.com/):

1979959 - Samba autorid fails to map AD users if id rangesize fits in the id range only once
1995849 - [RFE] Change change password change prompt phrasing
1999294 - With "samba-4.13.3-4.el8_4.x86_64" there was error/message in the winbind service status  . "open_internal_pipe: Could not connect to dssetup pipe: NT_STATUS_RPC_INTERFACE_NOT_FOUND" ; "DCERPC_NCA_S_OP_RNG_ERROR "
2009673 - CVE-2021-20316 samba: Symlink race error can allow metadata read and modify outside of the exported share
2013596 - Rebase Samba to the the latest 4.15.x release
2019461 - Directory containing dangling symlinks cannot be deleted.
2028029 - Winbindd crashes after NULL pointer dereference - missing return value check in winbindd_util.c:fill_domain_username_talloc()
2035528 - [smb] Segmentation fault when joining the domain
2038148 - Failed to authenticate users after upgrade samba package to release samba-4.14.5-7x
2038796 - filename_convert_internal: open_pathref_fsp [xxx] failed: NT_STATUS_ACCESS_DENIED
2043154 - smb.service: Got notification message from PID [pid1], but reception only permitted for main PID [pid2]
2044404 - Printing no longer works on Windows 7 with 2021-10 monthly rollup patch (KB5006743)
2046120 - CVE-2021-44141 samba: Information leak via symlinks of existance of files or directories outside of the exported share
2049602 - SAMBA: Disable NTLMSSP for ldap client connections (e.g. libads)
2057503 - Regression: [samba] winbind isn't able to refresh Kerberos tickets
2064325 - [Regression] `create krb5 conf = yes` doesn't work with a single KDC

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

aarch64:
ctdb-debuginfo-4.15.5-5.el8.aarch64.rpm
libsmbclient-debuginfo-4.15.5-5.el8.aarch64.rpm
libwbclient-debuginfo-4.15.5-5.el8.aarch64.rpm
python3-samba-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-client-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-client-libs-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-common-libs-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-common-tools-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-debugsource-4.15.5-5.el8.aarch64.rpm
samba-krb5-printing-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-libs-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-test-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-test-libs-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-vfs-iouring-4.15.5-5.el8.aarch64.rpm
samba-vfs-iouring-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-winbind-clients-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-winbind-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-winbind-modules-debuginfo-4.15.5-5.el8.aarch64.rpm

ppc64le:
ctdb-debuginfo-4.15.5-5.el8.ppc64le.rpm
libsmbclient-debuginfo-4.15.5-5.el8.ppc64le.rpm
libwbclient-debuginfo-4.15.5-5.el8.ppc64le.rpm
python3-samba-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-client-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-client-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-common-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-common-tools-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-debugsource-4.15.5-5.el8.ppc64le.rpm
samba-krb5-printing-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-test-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-test-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-vfs-iouring-4.15.5-5.el8.ppc64le.rpm
samba-vfs-iouring-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-winbind-clients-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-winbind-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-winbind-modules-debuginfo-4.15.5-5.el8.ppc64le.rpm

s390x:
ctdb-debuginfo-4.15.5-5.el8.s390x.rpm
libsmbclient-debuginfo-4.15.5-5.el8.s390x.rpm
libwbclient-debuginfo-4.15.5-5.el8.s390x.rpm
python3-samba-debuginfo-4.15.5-5.el8.s390x.rpm
samba-client-debuginfo-4.15.5-5.el8.s390x.rpm
samba-client-libs-debuginfo-4.15.5-5.el8.s390x.rpm
samba-common-libs-debuginfo-4.15.5-5.el8.s390x.rpm
samba-common-tools-debuginfo-4.15.5-5.el8.s390x.rpm
samba-debuginfo-4.15.5-5.el8.s390x.rpm
samba-debugsource-4.15.5-5.el8.s390x.rpm
samba-krb5-printing-debuginfo-4.15.5-5.el8.s390x.rpm
samba-libs-debuginfo-4.15.5-5.el8.s390x.rpm
samba-test-debuginfo-4.15.5-5.el8.s390x.rpm
samba-test-libs-debuginfo-4.15.5-5.el8.s390x.rpm
samba-vfs-iouring-4.15.5-5.el8.s390x.rpm
samba-vfs-iouring-debuginfo-4.15.5-5.el8.s390x.rpm
samba-winbind-clients-debuginfo-4.15.5-5.el8.s390x.rpm
samba-winbind-debuginfo-4.15.5-5.el8.s390x.rpm
samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.s390x.rpm
samba-winbind-modules-debuginfo-4.15.5-5.el8.s390x.rpm

x86_64:
ctdb-debuginfo-4.15.5-5.el8.x86_64.rpm
libsmbclient-debuginfo-4.15.5-5.el8.x86_64.rpm
libwbclient-debuginfo-4.15.5-5.el8.x86_64.rpm
python3-samba-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-client-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-client-libs-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-common-libs-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-common-tools-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-debugsource-4.15.5-5.el8.x86_64.rpm
samba-krb5-printing-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-libs-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-test-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-test-libs-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-vfs-iouring-4.15.5-5.el8.x86_64.rpm
samba-vfs-iouring-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winbind-clients-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winbind-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winbind-modules-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winexe-debuginfo-4.15.5-5.el8.x86_64.rpm

Red Hat Enterprise Linux BaseOS (v. 8):

Source:
samba-4.15.5-5.el8.src.rpm

aarch64:
ctdb-4.15.5-5.el8.aarch64.rpm
ctdb-debuginfo-4.15.5-5.el8.aarch64.rpm
libsmbclient-4.15.5-5.el8.aarch64.rpm
libsmbclient-debuginfo-4.15.5-5.el8.aarch64.rpm
libwbclient-4.15.5-5.el8.aarch64.rpm
libwbclient-debuginfo-4.15.5-5.el8.aarch64.rpm
python3-samba-4.15.5-5.el8.aarch64.rpm
python3-samba-debuginfo-4.15.5-5.el8.aarch64.rpm
python3-samba-test-4.15.5-5.el8.aarch64.rpm
samba-4.15.5-5.el8.aarch64.rpm
samba-client-4.15.5-5.el8.aarch64.rpm
samba-client-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-client-libs-4.15.5-5.el8.aarch64.rpm
samba-client-libs-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-common-libs-4.15.5-5.el8.aarch64.rpm
samba-common-libs-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-common-tools-4.15.5-5.el8.aarch64.rpm
samba-common-tools-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-debugsource-4.15.5-5.el8.aarch64.rpm
samba-krb5-printing-4.15.5-5.el8.aarch64.rpm
samba-krb5-printing-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-libs-4.15.5-5.el8.aarch64.rpm
samba-libs-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-test-4.15.5-5.el8.aarch64.rpm
samba-test-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-test-libs-4.15.5-5.el8.aarch64.rpm
samba-test-libs-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-vfs-iouring-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-winbind-4.15.5-5.el8.aarch64.rpm
samba-winbind-clients-4.15.5-5.el8.aarch64.rpm
samba-winbind-clients-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-winbind-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-winbind-krb5-locator-4.15.5-5.el8.aarch64.rpm
samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-winbind-modules-4.15.5-5.el8.aarch64.rpm
samba-winbind-modules-debuginfo-4.15.5-5.el8.aarch64.rpm

noarch:
samba-common-4.15.5-5.el8.noarch.rpm
samba-pidl-4.15.5-5.el8.noarch.rpm

ppc64le:
ctdb-4.15.5-5.el8.ppc64le.rpm
ctdb-debuginfo-4.15.5-5.el8.ppc64le.rpm
libsmbclient-4.15.5-5.el8.ppc64le.rpm
libsmbclient-debuginfo-4.15.5-5.el8.ppc64le.rpm
libwbclient-4.15.5-5.el8.ppc64le.rpm
libwbclient-debuginfo-4.15.5-5.el8.ppc64le.rpm
python3-samba-4.15.5-5.el8.ppc64le.rpm
python3-samba-debuginfo-4.15.5-5.el8.ppc64le.rpm
python3-samba-test-4.15.5-5.el8.ppc64le.rpm
samba-4.15.5-5.el8.ppc64le.rpm
samba-client-4.15.5-5.el8.ppc64le.rpm
samba-client-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-client-libs-4.15.5-5.el8.ppc64le.rpm
samba-client-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-common-libs-4.15.5-5.el8.ppc64le.rpm
samba-common-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-common-tools-4.15.5-5.el8.ppc64le.rpm
samba-common-tools-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-debugsource-4.15.5-5.el8.ppc64le.rpm
samba-krb5-printing-4.15.5-5.el8.ppc64le.rpm
samba-krb5-printing-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-libs-4.15.5-5.el8.ppc64le.rpm
samba-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-test-4.15.5-5.el8.ppc64le.rpm
samba-test-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-test-libs-4.15.5-5.el8.ppc64le.rpm
samba-test-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-vfs-iouring-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-winbind-4.15.5-5.el8.ppc64le.rpm
samba-winbind-clients-4.15.5-5.el8.ppc64le.rpm
samba-winbind-clients-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-winbind-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-winbind-krb5-locator-4.15.5-5.el8.ppc64le.rpm
samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-winbind-modules-4.15.5-5.el8.ppc64le.rpm
samba-winbind-modules-debuginfo-4.15.5-5.el8.ppc64le.rpm

s390x:
ctdb-4.15.5-5.el8.s390x.rpm
ctdb-debuginfo-4.15.5-5.el8.s390x.rpm
libsmbclient-4.15.5-5.el8.s390x.rpm
libsmbclient-debuginfo-4.15.5-5.el8.s390x.rpm
libwbclient-4.15.5-5.el8.s390x.rpm
libwbclient-debuginfo-4.15.5-5.el8.s390x.rpm
python3-samba-4.15.5-5.el8.s390x.rpm
python3-samba-debuginfo-4.15.5-5.el8.s390x.rpm
python3-samba-test-4.15.5-5.el8.s390x.rpm
samba-4.15.5-5.el8.s390x.rpm
samba-client-4.15.5-5.el8.s390x.rpm
samba-client-debuginfo-4.15.5-5.el8.s390x.rpm
samba-client-libs-4.15.5-5.el8.s390x.rpm
samba-client-libs-debuginfo-4.15.5-5.el8.s390x.rpm
samba-common-libs-4.15.5-5.el8.s390x.rpm
samba-common-libs-debuginfo-4.15.5-5.el8.s390x.rpm
samba-common-tools-4.15.5-5.el8.s390x.rpm
samba-common-tools-debuginfo-4.15.5-5.el8.s390x.rpm
samba-debuginfo-4.15.5-5.el8.s390x.rpm
samba-debugsource-4.15.5-5.el8.s390x.rpm
samba-krb5-printing-4.15.5-5.el8.s390x.rpm
samba-krb5-printing-debuginfo-4.15.5-5.el8.s390x.rpm
samba-libs-4.15.5-5.el8.s390x.rpm
samba-libs-debuginfo-4.15.5-5.el8.s390x.rpm
samba-test-4.15.5-5.el8.s390x.rpm
samba-test-debuginfo-4.15.5-5.el8.s390x.rpm
samba-test-libs-4.15.5-5.el8.s390x.rpm
samba-test-libs-debuginfo-4.15.5-5.el8.s390x.rpm
samba-vfs-iouring-debuginfo-4.15.5-5.el8.s390x.rpm
samba-winbind-4.15.5-5.el8.s390x.rpm
samba-winbind-clients-4.15.5-5.el8.s390x.rpm
samba-winbind-clients-debuginfo-4.15.5-5.el8.s390x.rpm
samba-winbind-debuginfo-4.15.5-5.el8.s390x.rpm
samba-winbind-krb5-locator-4.15.5-5.el8.s390x.rpm
samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.s390x.rpm
samba-winbind-modules-4.15.5-5.el8.s390x.rpm
samba-winbind-modules-debuginfo-4.15.5-5.el8.s390x.rpm

x86_64:
ctdb-4.15.5-5.el8.x86_64.rpm
ctdb-debuginfo-4.15.5-5.el8.i686.rpm
ctdb-debuginfo-4.15.5-5.el8.x86_64.rpm
libsmbclient-4.15.5-5.el8.i686.rpm
libsmbclient-4.15.5-5.el8.x86_64.rpm
libsmbclient-debuginfo-4.15.5-5.el8.i686.rpm
libsmbclient-debuginfo-4.15.5-5.el8.x86_64.rpm
libwbclient-4.15.5-5.el8.i686.rpm
libwbclient-4.15.5-5.el8.x86_64.rpm
libwbclient-debuginfo-4.15.5-5.el8.i686.rpm
libwbclient-debuginfo-4.15.5-5.el8.x86_64.rpm
python3-samba-4.15.5-5.el8.i686.rpm
python3-samba-4.15.5-5.el8.x86_64.rpm
python3-samba-debuginfo-4.15.5-5.el8.i686.rpm
python3-samba-debuginfo-4.15.5-5.el8.x86_64.rpm
python3-samba-test-4.15.5-5.el8.x86_64.rpm
samba-4.15.5-5.el8.x86_64.rpm
samba-client-4.15.5-5.el8.x86_64.rpm
samba-client-debuginfo-4.15.5-5.el8.i686.rpm
samba-client-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-client-libs-4.15.5-5.el8.i686.rpm
samba-client-libs-4.15.5-5.el8.x86_64.rpm
samba-client-libs-debuginfo-4.15.5-5.el8.i686.rpm
samba-client-libs-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-common-libs-4.15.5-5.el8.x86_64.rpm
samba-common-libs-debuginfo-4.15.5-5.el8.i686.rpm
samba-common-libs-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-common-tools-4.15.5-5.el8.x86_64.rpm
samba-common-tools-debuginfo-4.15.5-5.el8.i686.rpm
samba-common-tools-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-debuginfo-4.15.5-5.el8.i686.rpm
samba-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-debugsource-4.15.5-5.el8.i686.rpm
samba-debugsource-4.15.5-5.el8.x86_64.rpm
samba-krb5-printing-4.15.5-5.el8.x86_64.rpm
samba-krb5-printing-debuginfo-4.15.5-5.el8.i686.rpm
samba-krb5-printing-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-libs-4.15.5-5.el8.i686.rpm
samba-libs-4.15.5-5.el8.x86_64.rpm
samba-libs-debuginfo-4.15.5-5.el8.i686.rpm
samba-libs-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-test-4.15.5-5.el8.x86_64.rpm
samba-test-debuginfo-4.15.5-5.el8.i686.rpm
samba-test-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-test-libs-4.15.5-5.el8.x86_64.rpm
samba-test-libs-debuginfo-4.15.5-5.el8.i686.rpm
samba-test-libs-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-vfs-iouring-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winbind-4.15.5-5.el8.x86_64.rpm
samba-winbind-clients-4.15.5-5.el8.x86_64.rpm
samba-winbind-clients-debuginfo-4.15.5-5.el8.i686.rpm
samba-winbind-clients-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winbind-debuginfo-4.15.5-5.el8.i686.rpm
samba-winbind-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winbind-krb5-locator-4.15.5-5.el8.x86_64.rpm
samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.i686.rpm
samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winbind-modules-4.15.5-5.el8.i686.rpm
samba-winbind-modules-4.15.5-5.el8.x86_64.rpm
samba-winbind-modules-debuginfo-4.15.5-5.el8.i686.rpm
samba-winbind-modules-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winexe-4.15.5-5.el8.x86_64.rpm
samba-winexe-debuginfo-4.15.5-5.el8.x86_64.rpm

Red Hat CodeReady Linux Builder (v. 8):

aarch64:
ctdb-debuginfo-4.15.5-5.el8.aarch64.rpm
libsmbclient-debuginfo-4.15.5-5.el8.aarch64.rpm
libsmbclient-devel-4.15.5-5.el8.aarch64.rpm
libwbclient-debuginfo-4.15.5-5.el8.aarch64.rpm
libwbclient-devel-4.15.5-5.el8.aarch64.rpm
python3-samba-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-client-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-client-libs-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-common-libs-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-common-tools-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-debugsource-4.15.5-5.el8.aarch64.rpm
samba-devel-4.15.5-5.el8.aarch64.rpm
samba-krb5-printing-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-libs-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-test-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-test-libs-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-vfs-iouring-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-winbind-clients-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-winbind-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.aarch64.rpm
samba-winbind-modules-debuginfo-4.15.5-5.el8.aarch64.rpm

ppc64le:
ctdb-debuginfo-4.15.5-5.el8.ppc64le.rpm
libsmbclient-debuginfo-4.15.5-5.el8.ppc64le.rpm
libsmbclient-devel-4.15.5-5.el8.ppc64le.rpm
libwbclient-debuginfo-4.15.5-5.el8.ppc64le.rpm
libwbclient-devel-4.15.5-5.el8.ppc64le.rpm
python3-samba-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-client-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-client-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-common-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-common-tools-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-debugsource-4.15.5-5.el8.ppc64le.rpm
samba-devel-4.15.5-5.el8.ppc64le.rpm
samba-krb5-printing-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-test-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-test-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-vfs-iouring-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-winbind-clients-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-winbind-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.ppc64le.rpm
samba-winbind-modules-debuginfo-4.15.5-5.el8.ppc64le.rpm

s390x:
ctdb-debuginfo-4.15.5-5.el8.s390x.rpm
libsmbclient-debuginfo-4.15.5-5.el8.s390x.rpm
libsmbclient-devel-4.15.5-5.el8.s390x.rpm
libwbclient-debuginfo-4.15.5-5.el8.s390x.rpm
libwbclient-devel-4.15.5-5.el8.s390x.rpm
python3-samba-debuginfo-4.15.5-5.el8.s390x.rpm
samba-client-debuginfo-4.15.5-5.el8.s390x.rpm
samba-client-libs-debuginfo-4.15.5-5.el8.s390x.rpm
samba-common-libs-debuginfo-4.15.5-5.el8.s390x.rpm
samba-common-tools-debuginfo-4.15.5-5.el8.s390x.rpm
samba-debuginfo-4.15.5-5.el8.s390x.rpm
samba-debugsource-4.15.5-5.el8.s390x.rpm
samba-devel-4.15.5-5.el8.s390x.rpm
samba-krb5-printing-debuginfo-4.15.5-5.el8.s390x.rpm
samba-libs-debuginfo-4.15.5-5.el8.s390x.rpm
samba-test-debuginfo-4.15.5-5.el8.s390x.rpm
samba-test-libs-debuginfo-4.15.5-5.el8.s390x.rpm
samba-vfs-iouring-debuginfo-4.15.5-5.el8.s390x.rpm
samba-winbind-clients-debuginfo-4.15.5-5.el8.s390x.rpm
samba-winbind-debuginfo-4.15.5-5.el8.s390x.rpm
samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.s390x.rpm
samba-winbind-modules-debuginfo-4.15.5-5.el8.s390x.rpm

x86_64:
ctdb-debuginfo-4.15.5-5.el8.i686.rpm
ctdb-debuginfo-4.15.5-5.el8.x86_64.rpm
libsmbclient-debuginfo-4.15.5-5.el8.i686.rpm
libsmbclient-debuginfo-4.15.5-5.el8.x86_64.rpm
libsmbclient-devel-4.15.5-5.el8.i686.rpm
libsmbclient-devel-4.15.5-5.el8.x86_64.rpm
libwbclient-debuginfo-4.15.5-5.el8.i686.rpm
libwbclient-debuginfo-4.15.5-5.el8.x86_64.rpm
libwbclient-devel-4.15.5-5.el8.i686.rpm
libwbclient-devel-4.15.5-5.el8.x86_64.rpm
python3-samba-debuginfo-4.15.5-5.el8.i686.rpm
python3-samba-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-client-debuginfo-4.15.5-5.el8.i686.rpm
samba-client-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-client-libs-debuginfo-4.15.5-5.el8.i686.rpm
samba-client-libs-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-common-libs-debuginfo-4.15.5-5.el8.i686.rpm
samba-common-libs-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-common-tools-debuginfo-4.15.5-5.el8.i686.rpm
samba-common-tools-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-debuginfo-4.15.5-5.el8.i686.rpm
samba-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-debugsource-4.15.5-5.el8.i686.rpm
samba-debugsource-4.15.5-5.el8.x86_64.rpm
samba-devel-4.15.5-5.el8.i686.rpm
samba-devel-4.15.5-5.el8.x86_64.rpm
samba-krb5-printing-debuginfo-4.15.5-5.el8.i686.rpm
samba-krb5-printing-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-libs-debuginfo-4.15.5-5.el8.i686.rpm
samba-libs-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-test-debuginfo-4.15.5-5.el8.i686.rpm
samba-test-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-test-libs-debuginfo-4.15.5-5.el8.i686.rpm
samba-test-libs-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-vfs-iouring-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winbind-clients-debuginfo-4.15.5-5.el8.i686.rpm
samba-winbind-clients-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winbind-debuginfo-4.15.5-5.el8.i686.rpm
samba-winbind-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.i686.rpm
samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winbind-modules-debuginfo-4.15.5-5.el8.i686.rpm
samba-winbind-modules-debuginfo-4.15.5-5.el8.x86_64.rpm
samba-winexe-debuginfo-4.15.5-5.el8.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2021-20316
https://access.redhat.com/security/cve/CVE-2021-44141
https://access.redhat.com/security/updates/classification/#moderate
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.6_release_notes/

8. Contact:

The Red Hat security contact is . More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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c4Xb
-----END PGP SIGNATURE-----
--
RHSA-announce mailing list
RHSA-announce@redhat.com
https://listman.redhat.com/mailman/listinfo/rhsa-announce

RedHat: RHSA-2022-2074:01 Moderate: samba security, bug fix,

An update for samba is now available for Red Hat Enterprise Linux 8

Summary

Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information.
The following packages have been upgraded to a later upstream version: samba (4.15.5). (BZ#2013596)
Security Fix(es):
* samba: Symlink race error can allow metadata read and modify outside of the exported share (CVE-2021-20316)
* samba: Information leak via symlinks of existance of files or directories outside of the exported share (CVE-2021-44141)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.6 Release Notes linked from the References section.



Summary


Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the smb service will be restarted automatically.

References

https://access.redhat.com/security/cve/CVE-2021-20316 https://access.redhat.com/security/cve/CVE-2021-44141 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.6_release_notes/

Package List

Red Hat Enterprise Linux AppStream (v. 8):
aarch64: ctdb-debuginfo-4.15.5-5.el8.aarch64.rpm libsmbclient-debuginfo-4.15.5-5.el8.aarch64.rpm libwbclient-debuginfo-4.15.5-5.el8.aarch64.rpm python3-samba-debuginfo-4.15.5-5.el8.aarch64.rpm samba-client-debuginfo-4.15.5-5.el8.aarch64.rpm samba-client-libs-debuginfo-4.15.5-5.el8.aarch64.rpm samba-common-libs-debuginfo-4.15.5-5.el8.aarch64.rpm samba-common-tools-debuginfo-4.15.5-5.el8.aarch64.rpm samba-debuginfo-4.15.5-5.el8.aarch64.rpm samba-debugsource-4.15.5-5.el8.aarch64.rpm samba-krb5-printing-debuginfo-4.15.5-5.el8.aarch64.rpm samba-libs-debuginfo-4.15.5-5.el8.aarch64.rpm samba-test-debuginfo-4.15.5-5.el8.aarch64.rpm samba-test-libs-debuginfo-4.15.5-5.el8.aarch64.rpm samba-vfs-iouring-4.15.5-5.el8.aarch64.rpm samba-vfs-iouring-debuginfo-4.15.5-5.el8.aarch64.rpm samba-winbind-clients-debuginfo-4.15.5-5.el8.aarch64.rpm samba-winbind-debuginfo-4.15.5-5.el8.aarch64.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.aarch64.rpm samba-winbind-modules-debuginfo-4.15.5-5.el8.aarch64.rpm
ppc64le: ctdb-debuginfo-4.15.5-5.el8.ppc64le.rpm libsmbclient-debuginfo-4.15.5-5.el8.ppc64le.rpm libwbclient-debuginfo-4.15.5-5.el8.ppc64le.rpm python3-samba-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-client-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-client-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-common-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-common-tools-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-debugsource-4.15.5-5.el8.ppc64le.rpm samba-krb5-printing-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-test-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-test-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-vfs-iouring-4.15.5-5.el8.ppc64le.rpm samba-vfs-iouring-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-winbind-clients-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-winbind-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-winbind-modules-debuginfo-4.15.5-5.el8.ppc64le.rpm
s390x: ctdb-debuginfo-4.15.5-5.el8.s390x.rpm libsmbclient-debuginfo-4.15.5-5.el8.s390x.rpm libwbclient-debuginfo-4.15.5-5.el8.s390x.rpm python3-samba-debuginfo-4.15.5-5.el8.s390x.rpm samba-client-debuginfo-4.15.5-5.el8.s390x.rpm samba-client-libs-debuginfo-4.15.5-5.el8.s390x.rpm samba-common-libs-debuginfo-4.15.5-5.el8.s390x.rpm samba-common-tools-debuginfo-4.15.5-5.el8.s390x.rpm samba-debuginfo-4.15.5-5.el8.s390x.rpm samba-debugsource-4.15.5-5.el8.s390x.rpm samba-krb5-printing-debuginfo-4.15.5-5.el8.s390x.rpm samba-libs-debuginfo-4.15.5-5.el8.s390x.rpm samba-test-debuginfo-4.15.5-5.el8.s390x.rpm samba-test-libs-debuginfo-4.15.5-5.el8.s390x.rpm samba-vfs-iouring-4.15.5-5.el8.s390x.rpm samba-vfs-iouring-debuginfo-4.15.5-5.el8.s390x.rpm samba-winbind-clients-debuginfo-4.15.5-5.el8.s390x.rpm samba-winbind-debuginfo-4.15.5-5.el8.s390x.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.s390x.rpm samba-winbind-modules-debuginfo-4.15.5-5.el8.s390x.rpm
x86_64: ctdb-debuginfo-4.15.5-5.el8.x86_64.rpm libsmbclient-debuginfo-4.15.5-5.el8.x86_64.rpm libwbclient-debuginfo-4.15.5-5.el8.x86_64.rpm python3-samba-debuginfo-4.15.5-5.el8.x86_64.rpm samba-client-debuginfo-4.15.5-5.el8.x86_64.rpm samba-client-libs-debuginfo-4.15.5-5.el8.x86_64.rpm samba-common-libs-debuginfo-4.15.5-5.el8.x86_64.rpm samba-common-tools-debuginfo-4.15.5-5.el8.x86_64.rpm samba-debuginfo-4.15.5-5.el8.x86_64.rpm samba-debugsource-4.15.5-5.el8.x86_64.rpm samba-krb5-printing-debuginfo-4.15.5-5.el8.x86_64.rpm samba-libs-debuginfo-4.15.5-5.el8.x86_64.rpm samba-test-debuginfo-4.15.5-5.el8.x86_64.rpm samba-test-libs-debuginfo-4.15.5-5.el8.x86_64.rpm samba-vfs-iouring-4.15.5-5.el8.x86_64.rpm samba-vfs-iouring-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winbind-clients-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winbind-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winbind-modules-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winexe-debuginfo-4.15.5-5.el8.x86_64.rpm
Red Hat Enterprise Linux BaseOS (v. 8):
Source: samba-4.15.5-5.el8.src.rpm
aarch64: ctdb-4.15.5-5.el8.aarch64.rpm ctdb-debuginfo-4.15.5-5.el8.aarch64.rpm libsmbclient-4.15.5-5.el8.aarch64.rpm libsmbclient-debuginfo-4.15.5-5.el8.aarch64.rpm libwbclient-4.15.5-5.el8.aarch64.rpm libwbclient-debuginfo-4.15.5-5.el8.aarch64.rpm python3-samba-4.15.5-5.el8.aarch64.rpm python3-samba-debuginfo-4.15.5-5.el8.aarch64.rpm python3-samba-test-4.15.5-5.el8.aarch64.rpm samba-4.15.5-5.el8.aarch64.rpm samba-client-4.15.5-5.el8.aarch64.rpm samba-client-debuginfo-4.15.5-5.el8.aarch64.rpm samba-client-libs-4.15.5-5.el8.aarch64.rpm samba-client-libs-debuginfo-4.15.5-5.el8.aarch64.rpm samba-common-libs-4.15.5-5.el8.aarch64.rpm samba-common-libs-debuginfo-4.15.5-5.el8.aarch64.rpm samba-common-tools-4.15.5-5.el8.aarch64.rpm samba-common-tools-debuginfo-4.15.5-5.el8.aarch64.rpm samba-debuginfo-4.15.5-5.el8.aarch64.rpm samba-debugsource-4.15.5-5.el8.aarch64.rpm samba-krb5-printing-4.15.5-5.el8.aarch64.rpm samba-krb5-printing-debuginfo-4.15.5-5.el8.aarch64.rpm samba-libs-4.15.5-5.el8.aarch64.rpm samba-libs-debuginfo-4.15.5-5.el8.aarch64.rpm samba-test-4.15.5-5.el8.aarch64.rpm samba-test-debuginfo-4.15.5-5.el8.aarch64.rpm samba-test-libs-4.15.5-5.el8.aarch64.rpm samba-test-libs-debuginfo-4.15.5-5.el8.aarch64.rpm samba-vfs-iouring-debuginfo-4.15.5-5.el8.aarch64.rpm samba-winbind-4.15.5-5.el8.aarch64.rpm samba-winbind-clients-4.15.5-5.el8.aarch64.rpm samba-winbind-clients-debuginfo-4.15.5-5.el8.aarch64.rpm samba-winbind-debuginfo-4.15.5-5.el8.aarch64.rpm samba-winbind-krb5-locator-4.15.5-5.el8.aarch64.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.aarch64.rpm samba-winbind-modules-4.15.5-5.el8.aarch64.rpm samba-winbind-modules-debuginfo-4.15.5-5.el8.aarch64.rpm
noarch: samba-common-4.15.5-5.el8.noarch.rpm samba-pidl-4.15.5-5.el8.noarch.rpm
ppc64le: ctdb-4.15.5-5.el8.ppc64le.rpm ctdb-debuginfo-4.15.5-5.el8.ppc64le.rpm libsmbclient-4.15.5-5.el8.ppc64le.rpm libsmbclient-debuginfo-4.15.5-5.el8.ppc64le.rpm libwbclient-4.15.5-5.el8.ppc64le.rpm libwbclient-debuginfo-4.15.5-5.el8.ppc64le.rpm python3-samba-4.15.5-5.el8.ppc64le.rpm python3-samba-debuginfo-4.15.5-5.el8.ppc64le.rpm python3-samba-test-4.15.5-5.el8.ppc64le.rpm samba-4.15.5-5.el8.ppc64le.rpm samba-client-4.15.5-5.el8.ppc64le.rpm samba-client-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-client-libs-4.15.5-5.el8.ppc64le.rpm samba-client-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-common-libs-4.15.5-5.el8.ppc64le.rpm samba-common-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-common-tools-4.15.5-5.el8.ppc64le.rpm samba-common-tools-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-debugsource-4.15.5-5.el8.ppc64le.rpm samba-krb5-printing-4.15.5-5.el8.ppc64le.rpm samba-krb5-printing-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-libs-4.15.5-5.el8.ppc64le.rpm samba-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-test-4.15.5-5.el8.ppc64le.rpm samba-test-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-test-libs-4.15.5-5.el8.ppc64le.rpm samba-test-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-vfs-iouring-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-winbind-4.15.5-5.el8.ppc64le.rpm samba-winbind-clients-4.15.5-5.el8.ppc64le.rpm samba-winbind-clients-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-winbind-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-winbind-krb5-locator-4.15.5-5.el8.ppc64le.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-winbind-modules-4.15.5-5.el8.ppc64le.rpm samba-winbind-modules-debuginfo-4.15.5-5.el8.ppc64le.rpm
s390x: ctdb-4.15.5-5.el8.s390x.rpm ctdb-debuginfo-4.15.5-5.el8.s390x.rpm libsmbclient-4.15.5-5.el8.s390x.rpm libsmbclient-debuginfo-4.15.5-5.el8.s390x.rpm libwbclient-4.15.5-5.el8.s390x.rpm libwbclient-debuginfo-4.15.5-5.el8.s390x.rpm python3-samba-4.15.5-5.el8.s390x.rpm python3-samba-debuginfo-4.15.5-5.el8.s390x.rpm python3-samba-test-4.15.5-5.el8.s390x.rpm samba-4.15.5-5.el8.s390x.rpm samba-client-4.15.5-5.el8.s390x.rpm samba-client-debuginfo-4.15.5-5.el8.s390x.rpm samba-client-libs-4.15.5-5.el8.s390x.rpm samba-client-libs-debuginfo-4.15.5-5.el8.s390x.rpm samba-common-libs-4.15.5-5.el8.s390x.rpm samba-common-libs-debuginfo-4.15.5-5.el8.s390x.rpm samba-common-tools-4.15.5-5.el8.s390x.rpm samba-common-tools-debuginfo-4.15.5-5.el8.s390x.rpm samba-debuginfo-4.15.5-5.el8.s390x.rpm samba-debugsource-4.15.5-5.el8.s390x.rpm samba-krb5-printing-4.15.5-5.el8.s390x.rpm samba-krb5-printing-debuginfo-4.15.5-5.el8.s390x.rpm samba-libs-4.15.5-5.el8.s390x.rpm samba-libs-debuginfo-4.15.5-5.el8.s390x.rpm samba-test-4.15.5-5.el8.s390x.rpm samba-test-debuginfo-4.15.5-5.el8.s390x.rpm samba-test-libs-4.15.5-5.el8.s390x.rpm samba-test-libs-debuginfo-4.15.5-5.el8.s390x.rpm samba-vfs-iouring-debuginfo-4.15.5-5.el8.s390x.rpm samba-winbind-4.15.5-5.el8.s390x.rpm samba-winbind-clients-4.15.5-5.el8.s390x.rpm samba-winbind-clients-debuginfo-4.15.5-5.el8.s390x.rpm samba-winbind-debuginfo-4.15.5-5.el8.s390x.rpm samba-winbind-krb5-locator-4.15.5-5.el8.s390x.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.s390x.rpm samba-winbind-modules-4.15.5-5.el8.s390x.rpm samba-winbind-modules-debuginfo-4.15.5-5.el8.s390x.rpm
x86_64: ctdb-4.15.5-5.el8.x86_64.rpm ctdb-debuginfo-4.15.5-5.el8.i686.rpm ctdb-debuginfo-4.15.5-5.el8.x86_64.rpm libsmbclient-4.15.5-5.el8.i686.rpm libsmbclient-4.15.5-5.el8.x86_64.rpm libsmbclient-debuginfo-4.15.5-5.el8.i686.rpm libsmbclient-debuginfo-4.15.5-5.el8.x86_64.rpm libwbclient-4.15.5-5.el8.i686.rpm libwbclient-4.15.5-5.el8.x86_64.rpm libwbclient-debuginfo-4.15.5-5.el8.i686.rpm libwbclient-debuginfo-4.15.5-5.el8.x86_64.rpm python3-samba-4.15.5-5.el8.i686.rpm python3-samba-4.15.5-5.el8.x86_64.rpm python3-samba-debuginfo-4.15.5-5.el8.i686.rpm python3-samba-debuginfo-4.15.5-5.el8.x86_64.rpm python3-samba-test-4.15.5-5.el8.x86_64.rpm samba-4.15.5-5.el8.x86_64.rpm samba-client-4.15.5-5.el8.x86_64.rpm samba-client-debuginfo-4.15.5-5.el8.i686.rpm samba-client-debuginfo-4.15.5-5.el8.x86_64.rpm samba-client-libs-4.15.5-5.el8.i686.rpm samba-client-libs-4.15.5-5.el8.x86_64.rpm samba-client-libs-debuginfo-4.15.5-5.el8.i686.rpm samba-client-libs-debuginfo-4.15.5-5.el8.x86_64.rpm samba-common-libs-4.15.5-5.el8.x86_64.rpm samba-common-libs-debuginfo-4.15.5-5.el8.i686.rpm samba-common-libs-debuginfo-4.15.5-5.el8.x86_64.rpm samba-common-tools-4.15.5-5.el8.x86_64.rpm samba-common-tools-debuginfo-4.15.5-5.el8.i686.rpm samba-common-tools-debuginfo-4.15.5-5.el8.x86_64.rpm samba-debuginfo-4.15.5-5.el8.i686.rpm samba-debuginfo-4.15.5-5.el8.x86_64.rpm samba-debugsource-4.15.5-5.el8.i686.rpm samba-debugsource-4.15.5-5.el8.x86_64.rpm samba-krb5-printing-4.15.5-5.el8.x86_64.rpm samba-krb5-printing-debuginfo-4.15.5-5.el8.i686.rpm samba-krb5-printing-debuginfo-4.15.5-5.el8.x86_64.rpm samba-libs-4.15.5-5.el8.i686.rpm samba-libs-4.15.5-5.el8.x86_64.rpm samba-libs-debuginfo-4.15.5-5.el8.i686.rpm samba-libs-debuginfo-4.15.5-5.el8.x86_64.rpm samba-test-4.15.5-5.el8.x86_64.rpm samba-test-debuginfo-4.15.5-5.el8.i686.rpm samba-test-debuginfo-4.15.5-5.el8.x86_64.rpm samba-test-libs-4.15.5-5.el8.x86_64.rpm samba-test-libs-debuginfo-4.15.5-5.el8.i686.rpm samba-test-libs-debuginfo-4.15.5-5.el8.x86_64.rpm samba-vfs-iouring-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winbind-4.15.5-5.el8.x86_64.rpm samba-winbind-clients-4.15.5-5.el8.x86_64.rpm samba-winbind-clients-debuginfo-4.15.5-5.el8.i686.rpm samba-winbind-clients-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winbind-debuginfo-4.15.5-5.el8.i686.rpm samba-winbind-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winbind-krb5-locator-4.15.5-5.el8.x86_64.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.i686.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winbind-modules-4.15.5-5.el8.i686.rpm samba-winbind-modules-4.15.5-5.el8.x86_64.rpm samba-winbind-modules-debuginfo-4.15.5-5.el8.i686.rpm samba-winbind-modules-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winexe-4.15.5-5.el8.x86_64.rpm samba-winexe-debuginfo-4.15.5-5.el8.x86_64.rpm
Red Hat CodeReady Linux Builder (v. 8):
aarch64: ctdb-debuginfo-4.15.5-5.el8.aarch64.rpm libsmbclient-debuginfo-4.15.5-5.el8.aarch64.rpm libsmbclient-devel-4.15.5-5.el8.aarch64.rpm libwbclient-debuginfo-4.15.5-5.el8.aarch64.rpm libwbclient-devel-4.15.5-5.el8.aarch64.rpm python3-samba-debuginfo-4.15.5-5.el8.aarch64.rpm samba-client-debuginfo-4.15.5-5.el8.aarch64.rpm samba-client-libs-debuginfo-4.15.5-5.el8.aarch64.rpm samba-common-libs-debuginfo-4.15.5-5.el8.aarch64.rpm samba-common-tools-debuginfo-4.15.5-5.el8.aarch64.rpm samba-debuginfo-4.15.5-5.el8.aarch64.rpm samba-debugsource-4.15.5-5.el8.aarch64.rpm samba-devel-4.15.5-5.el8.aarch64.rpm samba-krb5-printing-debuginfo-4.15.5-5.el8.aarch64.rpm samba-libs-debuginfo-4.15.5-5.el8.aarch64.rpm samba-test-debuginfo-4.15.5-5.el8.aarch64.rpm samba-test-libs-debuginfo-4.15.5-5.el8.aarch64.rpm samba-vfs-iouring-debuginfo-4.15.5-5.el8.aarch64.rpm samba-winbind-clients-debuginfo-4.15.5-5.el8.aarch64.rpm samba-winbind-debuginfo-4.15.5-5.el8.aarch64.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.aarch64.rpm samba-winbind-modules-debuginfo-4.15.5-5.el8.aarch64.rpm
ppc64le: ctdb-debuginfo-4.15.5-5.el8.ppc64le.rpm libsmbclient-debuginfo-4.15.5-5.el8.ppc64le.rpm libsmbclient-devel-4.15.5-5.el8.ppc64le.rpm libwbclient-debuginfo-4.15.5-5.el8.ppc64le.rpm libwbclient-devel-4.15.5-5.el8.ppc64le.rpm python3-samba-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-client-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-client-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-common-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-common-tools-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-debugsource-4.15.5-5.el8.ppc64le.rpm samba-devel-4.15.5-5.el8.ppc64le.rpm samba-krb5-printing-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-test-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-test-libs-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-vfs-iouring-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-winbind-clients-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-winbind-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.ppc64le.rpm samba-winbind-modules-debuginfo-4.15.5-5.el8.ppc64le.rpm
s390x: ctdb-debuginfo-4.15.5-5.el8.s390x.rpm libsmbclient-debuginfo-4.15.5-5.el8.s390x.rpm libsmbclient-devel-4.15.5-5.el8.s390x.rpm libwbclient-debuginfo-4.15.5-5.el8.s390x.rpm libwbclient-devel-4.15.5-5.el8.s390x.rpm python3-samba-debuginfo-4.15.5-5.el8.s390x.rpm samba-client-debuginfo-4.15.5-5.el8.s390x.rpm samba-client-libs-debuginfo-4.15.5-5.el8.s390x.rpm samba-common-libs-debuginfo-4.15.5-5.el8.s390x.rpm samba-common-tools-debuginfo-4.15.5-5.el8.s390x.rpm samba-debuginfo-4.15.5-5.el8.s390x.rpm samba-debugsource-4.15.5-5.el8.s390x.rpm samba-devel-4.15.5-5.el8.s390x.rpm samba-krb5-printing-debuginfo-4.15.5-5.el8.s390x.rpm samba-libs-debuginfo-4.15.5-5.el8.s390x.rpm samba-test-debuginfo-4.15.5-5.el8.s390x.rpm samba-test-libs-debuginfo-4.15.5-5.el8.s390x.rpm samba-vfs-iouring-debuginfo-4.15.5-5.el8.s390x.rpm samba-winbind-clients-debuginfo-4.15.5-5.el8.s390x.rpm samba-winbind-debuginfo-4.15.5-5.el8.s390x.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.s390x.rpm samba-winbind-modules-debuginfo-4.15.5-5.el8.s390x.rpm
x86_64: ctdb-debuginfo-4.15.5-5.el8.i686.rpm ctdb-debuginfo-4.15.5-5.el8.x86_64.rpm libsmbclient-debuginfo-4.15.5-5.el8.i686.rpm libsmbclient-debuginfo-4.15.5-5.el8.x86_64.rpm libsmbclient-devel-4.15.5-5.el8.i686.rpm libsmbclient-devel-4.15.5-5.el8.x86_64.rpm libwbclient-debuginfo-4.15.5-5.el8.i686.rpm libwbclient-debuginfo-4.15.5-5.el8.x86_64.rpm libwbclient-devel-4.15.5-5.el8.i686.rpm libwbclient-devel-4.15.5-5.el8.x86_64.rpm python3-samba-debuginfo-4.15.5-5.el8.i686.rpm python3-samba-debuginfo-4.15.5-5.el8.x86_64.rpm samba-client-debuginfo-4.15.5-5.el8.i686.rpm samba-client-debuginfo-4.15.5-5.el8.x86_64.rpm samba-client-libs-debuginfo-4.15.5-5.el8.i686.rpm samba-client-libs-debuginfo-4.15.5-5.el8.x86_64.rpm samba-common-libs-debuginfo-4.15.5-5.el8.i686.rpm samba-common-libs-debuginfo-4.15.5-5.el8.x86_64.rpm samba-common-tools-debuginfo-4.15.5-5.el8.i686.rpm samba-common-tools-debuginfo-4.15.5-5.el8.x86_64.rpm samba-debuginfo-4.15.5-5.el8.i686.rpm samba-debuginfo-4.15.5-5.el8.x86_64.rpm samba-debugsource-4.15.5-5.el8.i686.rpm samba-debugsource-4.15.5-5.el8.x86_64.rpm samba-devel-4.15.5-5.el8.i686.rpm samba-devel-4.15.5-5.el8.x86_64.rpm samba-krb5-printing-debuginfo-4.15.5-5.el8.i686.rpm samba-krb5-printing-debuginfo-4.15.5-5.el8.x86_64.rpm samba-libs-debuginfo-4.15.5-5.el8.i686.rpm samba-libs-debuginfo-4.15.5-5.el8.x86_64.rpm samba-test-debuginfo-4.15.5-5.el8.i686.rpm samba-test-debuginfo-4.15.5-5.el8.x86_64.rpm samba-test-libs-debuginfo-4.15.5-5.el8.i686.rpm samba-test-libs-debuginfo-4.15.5-5.el8.x86_64.rpm samba-vfs-iouring-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winbind-clients-debuginfo-4.15.5-5.el8.i686.rpm samba-winbind-clients-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winbind-debuginfo-4.15.5-5.el8.i686.rpm samba-winbind-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.i686.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winbind-modules-debuginfo-4.15.5-5.el8.i686.rpm samba-winbind-modules-debuginfo-4.15.5-5.el8.x86_64.rpm samba-winexe-debuginfo-4.15.5-5.el8.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/


Severity
Advisory ID: RHSA-2022:2074-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2022:2074
Issued Date: : 2022-05-10
CVE Names: CVE-2021-20316 CVE-2021-44141

Topic

An update for samba is now available for Red Hat Enterprise Linux 8.Red Hat Product Security has rated this update as having a security impactof Moderate. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.


Topic


 

Relevant Releases Architectures

Red Hat CodeReady Linux Builder (v. 8) - aarch64, ppc64le, s390x, x86_64

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64

Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64


Bugs Fixed

1979959 - Samba autorid fails to map AD users if id rangesize fits in the id range only once

1995849 - [RFE] Change change password change prompt phrasing

1999294 - With "samba-4.13.3-4.el8_4.x86_64" there was error/message in the winbind service status . "open_internal_pipe: Could not connect to dssetup pipe: NT_STATUS_RPC_INTERFACE_NOT_FOUND" ; "DCERPC_NCA_S_OP_RNG_ERROR "

2009673 - CVE-2021-20316 samba: Symlink race error can allow metadata read and modify outside of the exported share

2013596 - Rebase Samba to the the latest 4.15.x release

2019461 - Directory containing dangling symlinks cannot be deleted.

2028029 - Winbindd crashes after NULL pointer dereference - missing return value check in winbindd_util.c:fill_domain_username_talloc()

2035528 - [smb] Segmentation fault when joining the domain

2038148 - Failed to authenticate users after upgrade samba package to release samba-4.14.5-7x

2038796 - filename_convert_internal: open_pathref_fsp [xxx] failed: NT_STATUS_ACCESS_DENIED

2043154 - smb.service: Got notification message from PID [pid1], but reception only permitted for main PID [pid2]

2044404 - Printing no longer works on Windows 7 with 2021-10 monthly rollup patch (KB5006743)

2046120 - CVE-2021-44141 samba: Information leak via symlinks of existance of files or directories outside of the exported share

2049602 - SAMBA: Disable NTLMSSP for ldap client connections (e.g. libads)

2057503 - Regression: [samba] winbind isn't able to refresh Kerberos tickets

2064325 - [Regression] `create krb5 conf = yes` doesn't work with a single KDC


Related News

Linux Mint 22: Elevating Security and Usability for Admins
3 - 5 min read
Linux Mint has has long been recognized as a versatile and user-friendly distribution and has earned great popularity among administrators and
Exim 4.98 Addresses Critical Vulnerabilities, Bolsters Email Server Security
2 - 4 min read
Exim is one of Unix-like systems' most widely used mail transfer agents. It's essential for email delivery and handling and is a significant part of
Recent OpenSSH RCE Bug Explained: Impact & Mitigations
2 - 4 min read
In an era where cybersecurity threats loom larger than ever, the discovery of a Remote Code Execution (RCE) vulnerability in OpenSSH by Qualys’
CVE-2024-4577: A Swiftly Weaponized Vulnerability for Ransomware Distribution
2 - 4 min read
Security researchers recently issued an update detailing how attackers are exploiting a PHP code execution vulnerability to spread TellYouThePass
Play Ransomware Group Unleashes New Threat on ESXi Environments: Analysis & Mitigation Strategies
3 - 5 min read
The Play ransomware group, well-known for its double-extortion tactics, recently unveiled a Linux variant targeting ESXi environments. This
Critical Linux Kernel Vulnerabilities Patched in Ubuntu Azure Systems
2 - 4 min read
Canonical has fixed several recently identified critical Linux kernel vulnerabilities in July 2024. These vulnerabilities primarily affect Microsoft
The Urgent Need for Secure Software Development: New Report Serves as a Wake-Up Call for the Industry
3 - 5 min read
The Linux Foundation and Open Source Security Foundation recently published a report entitled "Secure Software Development Education 2024
Severe Linux Kernel Privilege Escalation Bugs Could Compromise Entire Systems
2 - 4 min read
The Cybersecurity and Infrastructure Security Agency (CISA) recently added a new Linux kernel privilege escalation bug ( CVE-2024-1086 ) to its

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved