samba-4.9.1-6.el7
エラータID: AXSA:2019-4253:03
リリース日:
2019/09/12 Thursday - 09:13
題名:
samba-4.9.1-6.el7
影響のあるチャネル:
Asianux Server 7 for x86_64
Severity:
Moderate
Description:
以下項目について対処しました。
[Security Fix]
- samba の Windows レジストリサービス API をエミュレートする RPC エン
ドポイントの実装方法に問題があり、権限のない攻撃者がこの問題を用いて
Samba 共有に新しいファイルの作成につながる Unix パーミッションを持つ
新しいレジストリハイブファイルをどこにでも作成する脆弱性があります。
(CVE-2019-3880)
一部CVEの翻訳文はJVNからの引用になります。
http://jvndb.jvn.jp/
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2019-3880
A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. An unprivileged attacker could use this flaw to create a new registry hive file anywhere they have unix permissions which could lead to creation of a new file in the Samba share. Versions before 4.8.11, 4.9.6 and 4.10.2 are vulnerable.
A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. An unprivileged attacker could use this flaw to create a new registry hive file anywhere they have unix permissions which could lead to creation of a new file in the Samba share. Versions before 4.8.11, 4.9.6 and 4.10.2 are vulnerable.
追加情報:
N/A
ダウンロード:
SRPMS
- samba-4.9.1-6.el7.src.rpm
MD5: 7f0f653cc532a528c088d8a898c1e2ef
SHA-256: 4c0e7f6f7ada65a265a87c4b4873432d76afeb47ca97fa18e44c100089c51542
Size: 11.34 MB
Asianux Server 7 for x86_64
- ctdb-4.9.1-6.el7.x86_64.rpm
MD5: 829aeefc7e44cfe7921deb1b98f39985
SHA-256: 9d90c44fc6676341bb3911fdae3dddbda2ca8c88e859d5b39435c098d0c89a4a
Size: 752.26 kB - ctdb-tests-4.9.1-6.el7.x86_64.rpm
MD5: b98e1a7107ef8959e4297b91868db710
SHA-256: fa25db10aaec7d1c5d451b3245657e16e5b3545694452699de0d1364addd02e3
Size: 1.25 MB - libsmbclient-4.9.1-6.el7.x86_64.rpm
MD5: 0c00a76db3d5990abb260aa2d7bf24fc
SHA-256: d9389a0a3185aade8708d62ca658c6b3e590c4fe9897f873b2f0166be9fdac0c
Size: 136.45 kB - libwbclient-4.9.1-6.el7.x86_64.rpm
MD5: a5836282161e88d7e474c6dbfe8a94e5
SHA-256: 9d7ca4d613fed013436f6498677d9136e58ac900b1bedd1ff36e895ce1cb38bf
Size: 109.59 kB - samba-4.9.1-6.el7.x86_64.rpm
MD5: e2ff0b3fdf3637a8bd2bcf52050c952a
SHA-256: a3c648482991b54f71f6d6f6b9a19b7880faaffcf196e02b8a76fcf6ef27ca1e
Size: 683.91 kB - samba-client-4.9.1-6.el7.x86_64.rpm
MD5: a030bb461c4513702d052aa9f2b9516b
SHA-256: ef2cd8010b934043edc0060354e2934b80be87365282d0a158157b6e942a09e2
Size: 627.58 kB - samba-client-libs-4.9.1-6.el7.x86_64.rpm
MD5: e1f19b20b497b23461127372028711d1
SHA-256: cdd0bf1a548824e87f97fefb4e18ed71551dd81b846c00df88c913894e66978d
Size: 4.94 MB - samba-common-4.9.1-6.el7.noarch.rpm
MD5: f72f26bbbb5d40e2c8eed2ec28d48c1b
SHA-256: fc702de051159d6a6db1d55de356be385b1ef0365f86f0da2de8705429e649cc
Size: 208.23 kB - samba-common-libs-4.9.1-6.el7.x86_64.rpm
MD5: 39b79ff385712b953d7bffabb684d22f
SHA-256: 00ac899c4e8661b3b51e1c2bc63fe5b1a0c9226a7c8b8ed985c805a3b1a8fdb1
Size: 169.49 kB - samba-common-tools-4.9.1-6.el7.x86_64.rpm
MD5: bcd649a8e6dbc6802f19e0b182f486a0
SHA-256: 4f473e4476b27374f426f054e7b0ed1e678f79fa1afe125f338bfd8b0f739f2d
Size: 454.07 kB - samba-krb5-printing-4.9.1-6.el7.x86_64.rpm
MD5: 7ff1db37a0c67e69185924ac8880ff5a
SHA-256: c8f1f1aabd77aa0e2e8750418190e0dd78f4719c2e94b5dd03dd581b5cf3a0a1
Size: 92.40 kB - samba-libs-4.9.1-6.el7.x86_64.rpm
MD5: 6c7af325a48feacf6ac98e61de8a0fff
SHA-256: fc6880606d1cdb35df23c4c021511fcfe71d2f9204a28ed2380b7e0d33fbb72a
Size: 258.91 kB - samba-python-4.9.1-6.el7.x86_64.rpm
MD5: d3ee0d318afe7ccb0ca9088c826b9c1e
SHA-256: 68996cb5db12b97b49dcc12ec864c7daaf5c664b79cbc61f836643fd92155d70
Size: 2.40 MB - samba-winbind-4.9.1-6.el7.x86_64.rpm
MD5: f52d38e0f4ae939dee21cd33030a8f3d
SHA-256: 33b853a38997140430eb23fd46428a01e46a40f0a44a4fc6670212daf4b49013
Size: 544.44 kB - samba-winbind-clients-4.9.1-6.el7.x86_64.rpm
MD5: fab9eb78e6601c2eee8c0b8aabd0fb4c
SHA-256: 380eb62cc03ae4cf987e31617af1cd93b19f67225e2203790679130501bcf369
Size: 139.46 kB - samba-winbind-modules-4.9.1-6.el7.x86_64.rpm
MD5: a894dc4fe5cd00327c5e68878bfa9ac6
SHA-256: 59ab4c91632d4d7528b67bc77733b4a9754ecf37b525e1269cf18fc92c28f896
Size: 116.63 kB - libsmbclient-4.9.1-6.el7.i686.rpm
MD5: 7678cc402a50e4ef07a4db2e40086b4d
SHA-256: 31cb58f3438faf0248622c7401592edbaa4522924a512729d4e674ffd3eebe1e
Size: 137.21 kB - libwbclient-4.9.1-6.el7.i686.rpm
MD5: 5281df196509ca1dda6a63bd75cfa7d7
SHA-256: a861f0c8caa98f4b6238704fa764212e420c2bf0562aaaeb381589c6c13d87e6
Size: 110.41 kB - samba-client-libs-4.9.1-6.el7.i686.rpm
MD5: 26f91a9adf3fc70576609f30da06a7ec
SHA-256: 5f5e5d1693e11008be802f57328c3ae717656792b3579b9c723dc67704c64cc2
Size: 4.98 MB - samba-libs-4.9.1-6.el7.i686.rpm
MD5: 0f2a7da82f629312dc92406ef701cb0a
SHA-256: 7940f3d60449cc2d64565338c17e6444ce579b96c661ba9a290271bb23a0498d
Size: 264.45 kB - samba-winbind-modules-4.9.1-6.el7.i686.rpm
MD5: 7c92fc9c49c342314c986f61b5dd9f0d
SHA-256: 6a917a560fc3ddcef2312027cc3094904b90d81c0db229fbaf915207ac2acc95
Size: 116.80 kB