Samba has issued advisories today (October 29): https://www.samba.org/samba/security/CVE-2020-14318.html https://www.samba.org/samba/security/CVE-2020-14323.html https://www.samba.org/samba/security/CVE-2020-14383.html The issues are fixed upstream in 4.12.9: https://www.samba.org/samba/history/samba-4.12.9.html SUSE has issued advisories for this today: https://lists.suse.com/pipermail/sle-security-updates/2020-October/007660.html https://lists.suse.com/pipermail/sle-security-updates/2020-October/007659.html Mageia 7 is also affected.
Whiteboard: (none) => MGA7TOO
Ubuntu has issued an advisory for this today (November 2): https://ubuntu.com/security/notices/USN-4611-1
Cauldron has samba-4.12.9-1.mga8 I haven't got a patch for mga7 (4.10.x) yet, will try and finish that tomorrow (or consider bumping mga7 to 4.12.9).
Status: NEW => ASSIGNED
So far the only distro I see with 4.10.x updates is SUSE: https://lists.suse.com/pipermail/sle-security-updates/2020-October/007660.html
Component: Release (media or process) => SecurityQA Contact: (none) => security
Whiteboard: MGA7TOO => (none)Version: Cauldron => 7
Source RPM: samba-4.12.8-1.mga8.src.rpm => samba-4.10.18-1.mga7.src.rpm
SUSE just pulled an updated git snapshot from the 4.10.x branch.
I have patches for CVE-2020-14318 and CVE-2020-14323 that apply, but not yet for CVE-2020-14383.
Strange, I don't see any commits upstream since 4.10.18 six weeks ago: https://git.samba.org/samba.git/?p=samba.git;a=shortlog;h=refs/heads/v4-10-stable
r1642722 ( samba-4.10.18-1.1.mga7), just submitted to updates_testing, has patches for all 3 CVEs.
Advisory: ======================== Updated samba packages fix security vulnerabilities: Steven French discovered that Samba incorrectly handled ChangeNotify permissions. A remote attacker could possibly use this issue to obtain file name information (CVE-2020-14318). Bas Alberts discovered that Samba incorrectly handled certain winbind requests. A remote attacker could possibly use this issue to cause winbind to crash, resulting in a denial of service (CVE-2020-14323). Francis Brosnan Blázquez discovered that Samba incorrectly handled certain invalid DNS records. A remote attacker could possibly use this issue to cause the DNS server to crash, resulting in a denial of service (CVE-2020-14383). References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14318 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14323 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14383 https://www.samba.org/samba/security/CVE-2020-14318.html https://www.samba.org/samba/security/CVE-2020-14323.html https://www.samba.org/samba/security/CVE-2020-14383.html https://ubuntu.com/security/notices/USN-4611-1 ======================== Updated packages in core/updates_testing: ======================== samba-4.10.18-1.1.mga7 samba-client-4.10.18-1.1.mga7 samba-common-4.10.18-1.1.mga7 samba-dc-4.10.18-1.1.mga7 libsamba-dc0-4.10.18-1.1.mga7 libkdc-samba4_2-4.10.18-1.1.mga7 libheimntlm-samba4_1-4.10.18-1.1.mga7 libsamba-devel-4.10.18-1.1.mga7 samba-krb5-printing-4.10.18-1.1.mga7 libsamba1-4.10.18-1.1.mga7 libsmbclient0-4.10.18-1.1.mga7 libsmbclient-devel-4.10.18-1.1.mga7 libwbclient0-4.10.18-1.1.mga7 libwbclient-devel-4.10.18-1.1.mga7 python2-samba-4.10.18-1.1.mga7 python3-samba-4.10.18-1.1.mga7 samba-pidl-4.10.18-1.1.mga7 samba-test-4.10.18-1.1.mga7 libsamba-test0-4.10.18-1.1.mga7 samba-winbind-4.10.18-1.1.mga7 samba-winbind-clients-4.10.18-1.1.mga7 samba-winbind-krb5-locator-4.10.18-1.1.mga7 samba-winbind-modules-4.10.18-1.1.mga7 ctdb-4.10.18-1.1.mga7 ctdb-tests-4.10.18-1.1.mga7 from samba-4.10.18-1.1.mga7.src.rpm
Assignee: bgmilne => qa-bugsCC: sysadmin-bugs => bgmilne
MGA7-64 MATE on Peaq C1011 No installation issues. Ref bug 27299 Used MCC to define a minimum samba server, used webmin to define samba-user. Using smbclient I could connect to my samba-server on my desktop PC, and similarly I could connect from my desktop PC to the samba server on this notebookj.
Whiteboard: (none) => MGA7-64-OKCC: (none) => herman.viaene
Validating. Advisory in Comment 8.
Keywords: (none) => validated_updateCC: (none) => andrewsfarm, sysadmin-bugs
Advisory pushed to SVN.
CVE: (none) => CVE-2020-14318, CVE-2020-14323, CVE-2020-14383CC: (none) => ouaurelienKeywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2020-0410.html
Status: ASSIGNED => RESOLVEDResolution: (none) => FIXED
*** Bug 27967 has been marked as a duplicate of this bug. ***
CC: (none) => zombie_ryushu