samba-4.10.16-9.0.1.el7.AXS7

エラータID: AXSA:2020-1012:06

リリース日: 
2020/12/22 Tuesday - 01:11
題名: 
samba-4.10.16-9.0.1.el7.AXS7
影響のあるチャネル: 
Asianux Server 7 for x86_64
Severity: 
Moderate
Description: 

以下項目について対処しました。

[Security Fix]
- samba には、ファイルやディレクトリの権限の処理中に、
認証された攻撃者が特定のファイルやディレクトリの情報に
アクセスすることの可能な脆弱性があります。(CVE-2020-14318)

- samba の Winbind サービスには、ヌルポインタデリファレンスの
問題があり、ローカルの攻撃者がサービス拒否を引き起こし、
Winbind サービスをクラッシュさせることの可能な脆弱性があります。
(CVE-2020-14323)

- samba には、攻撃者が Netlogon Remote Protocol (MS-NRPC) を利用して、
ドメインコントローラーへ脆弱な Netlogon セキュアチャネルの接続を確立する時、
権限昇格が可能な脆弱性があります。(CVE-2020-1472)

解決策: 

パッケージをアップデートしてください。

CVE: 
CVE-2020-14318
A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and directory information which otherwise would be unavailable to the attacker.
CVE-2020-14323
A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service.
CVE-2020-1472
An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC), aka 'Netlogon Elevation of Privilege Vulnerability'.
追加情報: 

N/A

ダウンロード: 

SRPMS
  1. samba-4.10.16-9.0.1.el7.AXS7.src.rpm
    MD5: a9491e4101c07eb2497f6aa7da9ca10d
    SHA-256: b4e76ded16948dd9f3e09c7394c26829342344328c59f434a38dbc03c6d0ec4b
    Size: 11.65 MB

Asianux Server 7 for x86_64
  1. ctdb-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: 0eff591bd96f60b5a47d1bfeef2b8d72
    SHA-256: 47f753c289e1924e53e1e9795aff732c205b3b91bd97e6554c6b7eb5df33cad8
    Size: 758.12 kB
  2. ctdb-tests-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: 39f6face800715db59d4ee6ae8e4f4f5
    SHA-256: f443220921f861af937584b3da8ca53d42626733cc024ef982c06a9e967d8e15
    Size: 1.30 MB
  3. libsmbclient-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: 09e7929d643fc7ae37a35543a28bf8de
    SHA-256: 6efb027bf270d5a13b9f5c345428743129d1513f75c8a5e9866ddf0718dbcac9
    Size: 143.83 kB
  4. libwbclient-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: 6f575e8fda162dcad407ea8ace58c4d4
    SHA-256: 77469ba5e06ec84a0acb2beea738f861713ffb14706c3fef23ccb6d51938865f
    Size: 114.26 kB
  5. samba-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: 4e3a101fde6dc2bffe445f67349a8f26
    SHA-256: a4003ef87621ec6f8fa45ecc4e09918ae35782c422c94b1f0dd6ddda048e14b0
    Size: 717.51 kB
  6. samba-client-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: 19f6be1571f72648ba87ee511fac6c74
    SHA-256: b909f609c628fe59a3222df8a38468bb6b943cf168117b8597bb3235147b1e61
    Size: 644.40 kB
  7. samba-client-libs-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: 53b81e3e4e542652a98ee7f38a98f632
    SHA-256: 50f4beb1f74de0c62c9bc8add3ec169480958a521fa106cbfe52a433c18c6ab2
    Size: 5.00 MB
  8. samba-common-4.10.16-9.0.1.el7.AXS7.noarch.rpm
    MD5: fc9b222798a0a8cb79a7cff24c72b952
    SHA-256: 4709ef8c84c6edab9ae3d001fb9cc49dc2e9f721847364e6ce9bd6794a04a5f9
    Size: 213.87 kB
  9. samba-common-libs-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: dee306a2390073bccac495a1b820681c
    SHA-256: de734d97e298d6c01313c8c2aabc47666fab2f13a439730fcbbb2eec8ee317b8
    Size: 180.38 kB
  10. samba-common-tools-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: d9f6e831405e4746736d4f3f69a4a674
    SHA-256: c2802b5447a55211e197ed5c248e1f778ac41a46a9c82fb002e81879e308a944
    Size: 464.33 kB
  11. samba-krb5-printing-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: cf89defad2bc90161f34fd86decc0e1c
    SHA-256: cb4c5367b476a2cc1afd451f97e3e11ac1bad244369ef8510b747462328b6439
    Size: 93.82 kB
  12. samba-libs-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: beb7b1e1bf8b98560bf2f14247cca149
    SHA-256: 2c27c679d66676a0a5589d131a0dedd7df61110fae150f6aa7b6149dd382f69b
    Size: 269.36 kB
  13. samba-python-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: 2ce7d4f9fccc67bfc43a4b0991d206d3
    SHA-256: 33f177dd3a5cefe87cec33e938bf517ced21840f973b1058ab027d8e3eefe404
    Size: 2.95 MB
  14. samba-winbind-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: 2ebc630d51256b3df369c462e7a7712c
    SHA-256: 3abc62740122c2bf4f7b6494e597a26c115f09436db0b87de1684e7f2f5e63bf
    Size: 557.80 kB
  15. samba-winbind-clients-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: 73115be56b71572deaaa4de1654c3edf
    SHA-256: 641ae8a628ad50b4d4599d40146aa13834d1e18bdf449ab410eff03c603cfffc
    Size: 146.92 kB
  16. samba-winbind-modules-4.10.16-9.0.1.el7.AXS7.x86_64.rpm
    MD5: d37f1474906c06b3421f5349a13ed4f4
    SHA-256: 4ffc5ddcdd26100d36b64d6ddd5f0f9d0239795ed76d90fa5efec7d9adfb63ee
    Size: 121.14 kB
  17. libsmbclient-4.10.16-9.0.1.el7.AXS7.i686.rpm
    MD5: 7d9e703fc54d17d5516dd527052b995b
    SHA-256: 56e8a3fa4717297949a01d81cd482bb65e9d27d0f32befefad51e5f1629b0f3b
    Size: 144.12 kB
  18. libwbclient-4.10.16-9.0.1.el7.AXS7.i686.rpm
    MD5: 6d30fcfd4ef6d9b371d8a510b110c5ab
    SHA-256: 927ea71ac09e6e0de1baaa7988727810248dad3806fa4421ef6da014042bd420
    Size: 115.05 kB
  19. samba-client-libs-4.10.16-9.0.1.el7.AXS7.i686.rpm
    MD5: 317b690a527d41100809fbe1ce158e22
    SHA-256: 9ee1ba364ec9c93622214279ea831893dca8eee88a05742e8be0eb11c185572e
    Size: 5.07 MB
  20. samba-common-libs-4.10.16-9.0.1.el7.AXS7.i686.rpm
    MD5: aea5fcc9aa9f6f7ddb113d985d173194
    SHA-256: d09f656e783835b9b1d290a22ca6c45d882136880b20acfed97ef3dc8050f0b9
    Size: 176.06 kB
  21. samba-libs-4.10.16-9.0.1.el7.AXS7.i686.rpm
    MD5: d61af3a86042a4cd648d249234826a39
    SHA-256: 9e07f4fe957aea55d174abb5c3a4da894ab507db1ca6b4afb40fcaa279f74169
    Size: 274.53 kB
  22. samba-python-4.10.16-9.0.1.el7.AXS7.i686.rpm
    MD5: 881d4d4ac56d36f6583bc72b5c93dd52
    SHA-256: 6bb14df54957c9389e94f3774b05ddb030d44f32a1a02a215a05c6a4d0a3ab11
    Size: 2.73 MB
  23. samba-winbind-modules-4.10.16-9.0.1.el7.AXS7.i686.rpm
    MD5: 1a4a100fd39b37eef2b19c8bad66ca00
    SHA-256: 9c9e19725240a369e159162965e3cbe5414b04eeaddbee841fc1ef15ea5f7d2c
    Size: 121.43 kB