SUSE: 2022:4014-1 important: samba
Summary
This update for samba fixes the following issues: - CVE-2022-1615: Fixed error handling in random number generation (bso#15103)(bsc#1202976). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Enterprise Storage 7: zypper in -t patch SUSE-Storage-7-2022-4014=1 Package List: - SUSE Enterprise Storage 7 (aarch64 x86_64): ctdb-4.13.13+git.554.0742ec9cb74-150200.3.18.2 ctdb-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libdcerpc-binding0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libdcerpc-binding0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libdcerpc0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libdcerpc0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libndr-krb5pac0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libndr-krb5pac0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libndr-nbt0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libndr-nbt0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libndr-standard0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libndr-standard0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libndr1-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libndr1-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libnetapi0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libnetapi0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsamba-credentials0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsamba-credentials0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsamba-errors0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsamba-errors0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsamba-hostconfig0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsamba-hostconfig0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsamba-passdb0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsamba-passdb0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsamba-util0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsamba-util0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsamdb0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsamdb0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsmbclient0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsmbclient0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsmbconf0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsmbconf0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsmbldap2-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libsmbldap2-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libtevent-util0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libtevent-util0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libwbclient0-4.13.13+git.554.0742ec9cb74-150200.3.18.2 libwbclient0-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 samba-4.13.13+git.554.0742ec9cb74-150200.3.18.2 samba-ceph-4.13.13+git.554.0742ec9cb74-150200.3.18.2 samba-ceph-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 samba-client-4.13.13+git.554.0742ec9cb74-150200.3.18.2 samba-client-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 samba-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 samba-debugsource-4.13.13+git.554.0742ec9cb74-150200.3.18.2 samba-libs-4.13.13+git.554.0742ec9cb74-150200.3.18.2 samba-libs-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 samba-libs-python3-4.13.13+git.554.0742ec9cb74-150200.3.18.2 samba-libs-python3-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2 samba-winbind-4.13.13+git.554.0742ec9cb74-150200.3.18.2 samba-winbind-debuginfo-4.13.13+git.554.0742ec9cb74-150200.3.18.2
References
#1202976
Cross- CVE-2022-1615
CVSS scores:
CVE-2022-1615 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CVE-2022-1615 (SUSE): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products:
SUSE Enterprise Storage 7
https://www.suse.com/security/cve/CVE-2022-1615.html
https://bugzilla.suse.com/1202976