samba-3.6.9-168.AXS4.0.1
エラータID: AXSA:2014-176:02
Release date:
Thursday, March 27, 2014 - 11:37
Subject:
samba-3.6.9-168.AXS4.0.1
Affected Channels:
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity:
High
Description:
• CVE-2012-6150
The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1.2 handles invalid require_membership_of group names by accepting authentication by any user, which allows remote authenticated users to bypass intended access restrictions in opportunistic circumstances by leveraging an administrator's pam_winbind configuration-file mistake.
• CVE-2013-4496
Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obtain access via brute-force ChangePasswordUser2 (1) SAMR or (2) RAP attempts.
Solution:
Update packages.
CVEs:
CVE-2012-6150
The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1.2 handles invalid require_membership_of group names by accepting authentication by any user, which allows remote authenticated users to bypass intended access restrictions in opportunistic circumstances by leveraging an administrator's pam_winbind configuration-file mistake.
The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1.2 handles invalid require_membership_of group names by accepting authentication by any user, which allows remote authenticated users to bypass intended access restrictions in opportunistic circumstances by leveraging an administrator's pam_winbind configuration-file mistake.
CVE-2013-4496
Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obtain access via brute-force ChangePasswordUser2 (1) SAMR or (2) RAP attempts.
Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obtain access via brute-force ChangePasswordUser2 (1) SAMR or (2) RAP attempts.
Additional Info:
N/A
Download:
SRPMS
- samba-3.6.9-168.AXS4.0.1.src.rpm
MD5: f0682fe70ab89ca3fbe0de4de5009ab5
SHA-256: 80376f3499b9738c1850465aa34673e64eb7301935c6e4f5407b10e57889214b
Size: 28.14 MB
Asianux Server 4 for x86
- libsmbclient-3.6.9-168.AXS4.0.1.i686.rpm
MD5: 5212ab7fb640f11c9855f6b471d01d48
SHA-256: 6a96505e8478fc9eed810fa27af5a860265c97defa4e64d763dad26c270f7972
Size: 1.56 MB - samba-3.6.9-168.AXS4.0.1.i686.rpm
MD5: e9d4c0fff0fa1fc8095d4b1f6527231a
SHA-256: daaf6f7ab222b6796ae18a0cda3669e37b20c141e773d2c0c3c98ba1b244fdb1
Size: 5.02 MB - samba-client-3.6.9-168.AXS4.0.1.i686.rpm
MD5: 3e7f7953884edbf5448ab3c1338cdf4e
SHA-256: 2cf286db6e6f37c99350aaced94e5eac7e2b19ab4bb423cae00a4fa701d8ed23
Size: 10.67 MB - samba-common-3.6.9-168.AXS4.0.1.i686.rpm
MD5: be1d1dab1d10016cf9cebfee6daaeca4
SHA-256: ac0ffb69ce7cb49377606254697b28f2d431816e20031d95a90331c097bfec08
Size: 9.92 MB - samba-winbind-3.6.9-168.AXS4.0.1.i686.rpm
MD5: f6357a433c61728c4a88a30de884ad65
SHA-256: e1f2ab7c93b9c1d7aa138edd4e1366dbe0de33aad8b7c9748f86b612d296cfa8
Size: 2.16 MB - samba-winbind-clients-3.6.9-168.AXS4.0.1.i686.rpm
MD5: e1d3081d8f388b5bcf1b7c3ddaa2f256
SHA-256: 7ff516b1da843085a92200f3aa42ab908a68dfda0ccb441d4b861bcf679f4b1f
Size: 1.98 MB
Asianux Server 4 for x86_64
- libsmbclient-3.6.9-168.AXS4.0.1.x86_64.rpm
MD5: 8601c61ff5b43437b768ad2746ad6f46
SHA-256: ad6e1170cee74d2434c0ad1af53ab252aacef1f014010c93577de88ed2463248
Size: 1.58 MB - samba-3.6.9-168.AXS4.0.1.x86_64.rpm
MD5: 81ad781ec66e49a2f3f99a2a27eaee21
SHA-256: 15bd48f6ee91aec93517c4d6f305286ef107d1b86cc6b0b876c561bcd6450032
Size: 5.01 MB - samba-client-3.6.9-168.AXS4.0.1.x86_64.rpm
MD5: 68f365563f85f8e1086ff2aa8737f813
SHA-256: 7ad27da81d22d155ff554d605bd7c49a8ce5f2bf203b43e5c3c014ad918d90c7
Size: 10.75 MB - samba-common-3.6.9-168.AXS4.0.1.x86_64.rpm
MD5: e875f4b6f5d5665dc056d5b53819c9c6
SHA-256: 656c78ab4c7d92cab93ab28b6aec16b15e83bdf3c439b2ff6b8f932aa872ee41
Size: 9.96 MB - samba-winbind-3.6.9-168.AXS4.0.1.x86_64.rpm
MD5: 695afed45d58bf9f432ebb680796e67e
SHA-256: f71e29bd77bb70ceaf9ac464e96524acb1cef05262e6400e69adae86a0d2f083
Size: 2.17 MB - samba-winbind-clients-3.6.9-168.AXS4.0.1.x86_64.rpm
MD5: b1781990376356ee9eb7e71efcaa4f0a
SHA-256: 2fb34ce1396dc3c38020a013724b133e1a651c00a5e7085d0325277516f30555
Size: 1.99 MB - libsmbclient-3.6.9-168.AXS4.0.1.i686.rpm
MD5: 5212ab7fb640f11c9855f6b471d01d48
SHA-256: 6a96505e8478fc9eed810fa27af5a860265c97defa4e64d763dad26c270f7972
Size: 1.56 MB - samba-common-3.6.9-168.AXS4.0.1.i686.rpm
MD5: be1d1dab1d10016cf9cebfee6daaeca4
SHA-256: ac0ffb69ce7cb49377606254697b28f2d431816e20031d95a90331c097bfec08
Size: 9.92 MB - samba-winbind-clients-3.6.9-168.AXS4.0.1.i686.rpm
MD5: e1d3081d8f388b5bcf1b7c3ddaa2f256
SHA-256: 7ff516b1da843085a92200f3aa42ab908a68dfda0ccb441d4b861bcf679f4b1f
Size: 1.98 MB
日本語