SUSE: 2022:2580-1 moderate: samba | LinuxSecurity.com

Advisories


   SUSE Security Update: Security update for samba
______________________________________________________________________________

Announcement ID:    SUSE-SU-2022:2580-1
Rating:             moderate
References:         #1201496 
Cross-References:   CVE-2022-32742
Affected Products:
                    SUSE Enterprise Storage 7
______________________________________________________________________________

   An update that fixes one vulnerability is now available.

Description:

   This update for samba fixes the following issues:

   - CVE-2022-32742: Fixed incorrect length check in SMB1write,
     SMB1write_and_close, SMB1write_and_unlock (bso#15085) (bsc#1201496).


Patch Instructions:

   To install this SUSE Security Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - SUSE Enterprise Storage 7:

      zypper in -t patch SUSE-Storage-7-2022-2580=1



Package List:

   - SUSE Enterprise Storage 7 (aarch64 x86_64):

      ctdb-4.13.13+git.548.677411ecdb1-150200.3.15.1
      ctdb-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libdcerpc-binding0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libdcerpc-binding0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libdcerpc0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libdcerpc0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libndr-krb5pac0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libndr-krb5pac0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libndr-nbt0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libndr-nbt0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libndr-standard0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libndr-standard0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libndr1-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libndr1-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libnetapi0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libnetapi0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsamba-credentials0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsamba-credentials0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsamba-errors0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsamba-errors0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsamba-hostconfig0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsamba-hostconfig0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsamba-passdb0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsamba-passdb0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsamba-util0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsamba-util0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsamdb0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsamdb0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsmbclient0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsmbclient0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsmbconf0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsmbconf0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsmbldap2-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libsmbldap2-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libtevent-util0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libtevent-util0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libwbclient0-4.13.13+git.548.677411ecdb1-150200.3.15.1
      libwbclient0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      samba-4.13.13+git.548.677411ecdb1-150200.3.15.1
      samba-ceph-4.13.13+git.548.677411ecdb1-150200.3.15.1
      samba-ceph-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      samba-client-4.13.13+git.548.677411ecdb1-150200.3.15.1
      samba-client-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      samba-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      samba-debugsource-4.13.13+git.548.677411ecdb1-150200.3.15.1
      samba-libs-4.13.13+git.548.677411ecdb1-150200.3.15.1
      samba-libs-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      samba-libs-python3-4.13.13+git.548.677411ecdb1-150200.3.15.1
      samba-libs-python3-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1
      samba-winbind-4.13.13+git.548.677411ecdb1-150200.3.15.1
      samba-winbind-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1


References:

   https://www.suse.com/security/cve/CVE-2022-32742.html
   https://bugzilla.suse.com/1201496

SUSE: 2022:2580-1 moderate: samba

July 28, 2022
An update that fixes one vulnerability is now available

Summary

This update for samba fixes the following issues: - CVE-2022-32742: Fixed incorrect length check in SMB1write, SMB1write_and_close, SMB1write_and_unlock (bso#15085) (bsc#1201496). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Enterprise Storage 7: zypper in -t patch SUSE-Storage-7-2022-2580=1 Package List: - SUSE Enterprise Storage 7 (aarch64 x86_64): ctdb-4.13.13+git.548.677411ecdb1-150200.3.15.1 ctdb-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libdcerpc-binding0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libdcerpc-binding0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libdcerpc0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libdcerpc0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libndr-krb5pac0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libndr-krb5pac0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libndr-nbt0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libndr-nbt0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libndr-standard0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libndr-standard0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libndr1-4.13.13+git.548.677411ecdb1-150200.3.15.1 libndr1-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libnetapi0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libnetapi0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsamba-credentials0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsamba-credentials0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsamba-errors0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsamba-errors0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsamba-hostconfig0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsamba-hostconfig0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsamba-passdb0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsamba-passdb0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsamba-util0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsamba-util0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsamdb0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsamdb0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsmbclient0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsmbclient0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsmbconf0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsmbconf0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsmbldap2-4.13.13+git.548.677411ecdb1-150200.3.15.1 libsmbldap2-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libtevent-util0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libtevent-util0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 libwbclient0-4.13.13+git.548.677411ecdb1-150200.3.15.1 libwbclient0-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 samba-4.13.13+git.548.677411ecdb1-150200.3.15.1 samba-ceph-4.13.13+git.548.677411ecdb1-150200.3.15.1 samba-ceph-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 samba-client-4.13.13+git.548.677411ecdb1-150200.3.15.1 samba-client-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 samba-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 samba-debugsource-4.13.13+git.548.677411ecdb1-150200.3.15.1 samba-libs-4.13.13+git.548.677411ecdb1-150200.3.15.1 samba-libs-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 samba-libs-python3-4.13.13+git.548.677411ecdb1-150200.3.15.1 samba-libs-python3-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1 samba-winbind-4.13.13+git.548.677411ecdb1-150200.3.15.1 samba-winbind-debuginfo-4.13.13+git.548.677411ecdb1-150200.3.15.1

References

#1201496

Cross- CVE-2022-32742

Affected Products:

SUSE Enterprise Storage 7

https://www.suse.com/security/cve/CVE-2022-32742.html

https://bugzilla.suse.com/1201496

Severity
Announcement ID: SUSE-SU-2022:2580-1
Rating: moderate

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.