samba4-4.2.10-9.AXS4
エラータID: AXSA:2017-1372:01
Release date:
Wednesday, March 22, 2017 - 22:27
Subject:
samba4-4.2.10-9.AXS4
Affected Channels:
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity:
Moderate
Description:
Samba is the standard Windows interoperability suite of programs for Linux and Unix.
Security issues fixed with this release:
CVE-2016-2125
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2016-2126
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
Additional Changes:
Solution:
Update package.
CVEs:
CVE-2016-2125
It was found that Samba before versions 4.5.3, 4.4.8, 4.3.13 always requested forwardable tickets when using Kerberos authentication. A service to which Samba authenticated using Kerberos could subsequently use the ticket to impersonate Samba to other services or domain users.
It was found that Samba before versions 4.5.3, 4.4.8, 4.3.13 always requested forwardable tickets when using Kerberos authentication. A service to which Samba authenticated using Kerberos could subsequently use the ticket to impersonate Samba to other services or domain users.
CVE-2016-2126
Samba version 4.0.0 up to 4.5.2 is vulnerable to privilege elevation due to incorrect handling of the PAC (Privilege Attribute Certificate) checksum. A remote, authenticated, attacker can cause the winbindd process to crash using a legitimate Kerberos ticket. A local service with access to the winbindd privileged pipe can cause winbindd to cache elevated access permissions.
Samba version 4.0.0 up to 4.5.2 is vulnerable to privilege elevation due to incorrect handling of the PAC (Privilege Attribute Certificate) checksum. A remote, authenticated, attacker can cause the winbindd process to crash using a legitimate Kerberos ticket. A local service with access to the winbindd privileged pipe can cause winbindd to cache elevated access permissions.
Additional Info:
N/A
Download:
SRPMS
- samba4-4.2.10-9.AXS4.src.rpm
MD5: 574fe9b94bb44b54b460fa7c54cb86f0
SHA-256: efe7c6bba505a70a11ce5b7b48d98af416e477424f605f2e65960eee8cdb6f62
Size: 16.06 MB
Asianux Server 4 for x86
- samba4-4.2.10-9.AXS4.i686.rpm
MD5: 94c7353cb61029d36d4cda47ff68e939
SHA-256: 31e93c1c6ecd9c04766dda03709df27ef08461dfb3fcf2d5cc61c6757265ebb1
Size: 425.99 kB - samba4-client-4.2.10-9.AXS4.i686.rpm
MD5: 2297c938e007fd67967ccd91a4ee45d3
SHA-256: 4ac52e0c5281ab9909fa00aa231f38feca53196452c1cf243d6655850a6053ed
Size: 411.75 kB - samba4-common-4.2.10-9.AXS4.i686.rpm
MD5: cd30785f1b1f2dee0bd5b59c6f9c5134
SHA-256: 0c6dbde960a51565d2f7b3e5aaa8f86df036cbdfe9df34428e990bd7db535b01
Size: 652.95 kB - samba4-dc-4.2.10-9.AXS4.i686.rpm
MD5: 046866a22670d6c3ca47dd28a9ad324f
SHA-256: 433df70ad3d07d141dd19f394880c969d4ad90bab4bce4b7e324d2fa1c213b2f
Size: 14.48 kB - samba4-dc-libs-4.2.10-9.AXS4.i686.rpm
MD5: f2eb4c8a5ba624ee6449da07432078cf
SHA-256: 27931a1717deb36368feaa8548c38fd20a6e4facf029111db9ee511f7badfe03
Size: 14.52 kB - samba4-devel-4.2.10-9.AXS4.i686.rpm
MD5: 5e9fe2997827694b89c63870f175f9c2
SHA-256: b1f9e2355e12a8ca398eb3b6492629c39f114d499e50e6f676f86bfb0c49c673
Size: 316.13 kB - samba4-libs-4.2.10-9.AXS4.i686.rpm
MD5: 849f54cb2b5b3ecc726219d83131a7f4
SHA-256: 45b22adbbe97189bf177b51bde41263085a3d190ac74c36efd6ddd0433af7f13
Size: 4.42 MB - samba4-pidl-4.2.10-9.AXS4.i686.rpm
MD5: 5193c0f73f7aea97ff4f9af79c83850f
SHA-256: 97c7a9ff534385939cf1a7240a8b20d0e710da3c13fb5a5fce7959c067e03eb2
Size: 110.60 kB - samba4-python-4.2.10-9.AXS4.i686.rpm
MD5: 012ab432ee59cd49882d458225589e34
SHA-256: c2564d55bc8dc1b522bd65a00fd2971f60b585b39425d88b43ca05c2d2ea377a
Size: 1.87 MB - samba4-test-4.2.10-9.AXS4.i686.rpm
MD5: 4fb53c28ace27998ab22a6152f801446
SHA-256: a6e7fb0aae606cc2aabb83242be83a59af4cd8c99491672d72e6ad268ef5835e
Size: 1.53 MB - samba4-winbind-4.2.10-9.AXS4.i686.rpm
MD5: 90320c920f6a44755ed45dc3b8e1c38c
SHA-256: 3ba2d395b9711be8f21603f1bf8d2d4e4bd97c5f07003befb5f56fd039392bfd
Size: 405.75 kB - samba4-winbind-clients-4.2.10-9.AXS4.i686.rpm
MD5: 3e24e53424d7baadb710e421b8a3c70a
SHA-256: b4b5e431af74cf05d156c9ed8ed2d5f874ef0394791e27ef0596454f5a7d4f75
Size: 91.22 kB - samba4-winbind-krb5-locator-4.2.10-9.AXS4.i686.rpm
MD5: 891ef239b8d94c5bfae4b32f55e991d9
SHA-256: c82a4060098d7fa9b6dd638ae13eb1a20dfd75c33b6e0da4e6116a04c16273dd
Size: 18.96 kB
Asianux Server 4 for x86_64
- samba4-4.2.10-9.AXS4.x86_64.rpm
MD5: 5db727bb43e18f31a983757dc0221f07
SHA-256: c3cd5c47d1a64df35296b3d620cf23800f5a905d6dd1806a8c10dfedc54bb6cf
Size: 426.33 kB - samba4-client-4.2.10-9.AXS4.x86_64.rpm
MD5: 18ecdabb9d576b2d36e4804d9a956660
SHA-256: 11b4195dc99d8968d9961233e6bc1d199ca9072eb6d71ed9a810c0514f61d21e
Size: 404.90 kB - samba4-common-4.2.10-9.AXS4.x86_64.rpm
MD5: 71e763060fa54757db5b4149b6f320ac
SHA-256: 7c7ed5b137ac828aa01fcf1c775d119119b3cce2f7352f36ea40daa9d3cb5ef2
Size: 644.70 kB - samba4-dc-4.2.10-9.AXS4.x86_64.rpm
MD5: b169399011e1d52afa848fab975ed7e9
SHA-256: 500014d0960c6c6f3730fdc362bb164369c799119aad238e10f8a861c04642b9
Size: 14.04 kB - samba4-dc-libs-4.2.10-9.AXS4.x86_64.rpm
MD5: f777d09a4c5235b23cf07780dea25cd5
SHA-256: 404bb92ad9b7849f9c63b02288f9460fecc8ebd8607aaf5d55a6aaa8ad335759
Size: 14.07 kB - samba4-devel-4.2.10-9.AXS4.x86_64.rpm
MD5: f9ea7a60dc2bad63d7e1954d148c6c77
SHA-256: 18b1d0dc7c6af8a999f23f7c88c0d37886727413988c39f780b9f9422ef73ace
Size: 315.86 kB - samba4-libs-4.2.10-9.AXS4.x86_64.rpm
MD5: 63d071d1590a500b5fda7104aaf68274
SHA-256: a1e2249378b3de52879989637feb6527bc460d8b99b3659fcff9c3f4d9a65d64
Size: 4.35 MB - samba4-pidl-4.2.10-9.AXS4.x86_64.rpm
MD5: 9885c837f08029f9c3683e822e2dc560
SHA-256: 4d96c9f5836c443db9444722e757c5edd4e839933b58a133491d12a14f1395f0
Size: 110.16 kB - samba4-python-4.2.10-9.AXS4.x86_64.rpm
MD5: bd5131af6aaffa095f855482c296e70d
SHA-256: f5b53090c4bebc723c3df68a952633ea205f13c1fe554baee3c89fc67e51a093
Size: 1.92 MB - samba4-test-4.2.10-9.AXS4.x86_64.rpm
MD5: 48e1f73476acb0ad8aa846fe43ef3c4e
SHA-256: 38b7f61bf05f5afe3f707c8517ea7b9db8b60fe5f0bb555650246e5eb28625f9
Size: 1.45 MB - samba4-winbind-4.2.10-9.AXS4.x86_64.rpm
MD5: 8f6b1190dc257c77b1eff89f15088b81
SHA-256: 4740d2164101d6158c8fee75cbdf48e03a6d950e3375eac7e15fcbe4029ed918
Size: 395.15 kB - samba4-winbind-clients-4.2.10-9.AXS4.x86_64.rpm
MD5: 5febea1c300ace8cfc63e6933e4fbbf4
SHA-256: faea3c3b9ff31548e2337f1c34ed912fdf864174ed4f2d4982ba3a0e28e39f91
Size: 91.98 kB - samba4-winbind-krb5-locator-4.2.10-9.AXS4.x86_64.rpm
MD5: ab0ccba2d1146fe00a7274064232c02a
SHA-256: 5a7a9492ea883b524e080457797e82b84c2b2468e5d72dcb69b6ae95e59bcbce
Size: 18.61 kB