samba-4.10.16-25.0.1.el7.AXS7

エラータID: AXSA:2024-8875:09

リリース日: 
2024/10/02 Wednesday - 17:52
題名: 
samba-4.10.16-25.0.1.el7.AXS7
影響のあるチャネル: 
Asianux Server 7 for x86_64
Severity: 
High
Description: 

以下項目について対処しました。

[Security Fix]
- Samba の Spotlight 検索機能の sl_unpack_loop() 関数には、
受信したパケット内のデータ検証処理の欠落に起因して無限
ループが発生する問題があるため、リモートの攻撃者により、
細工された Spotlight mdssvc RPC パケットを介して、
サービス拒否攻撃 (CPU リソース枯渇) を可能とする脆弱性
が存在します。(CVE-2023-34966)

解決策: 

パッケージをアップデートしてください。

CVE: 
CVE-2023-34966
An infinite loop vulnerability was found in Samba's mdssvc RPC service for Spotlight. When parsing Spotlight mdssvc RPC packets sent by the client, the core unmarshalling function sl_unpack_loop() did not validate a field in the network packet that contains the count of elements in an array-like structure. By passing 0 as the count value, the attacked function will run in an endless loop consuming 100% CPU. This flaw allows an attacker to issue a malformed RPC request, triggering an infinite loop, resulting in a denial of service condition.
追加情報: 

N/A

ダウンロード: 

Asianux Server 7 for x86_64
  1. ctdb-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: 970427f26eb18737caafc0eaf09be04b
    SHA-256: 5fa7645735823290d7480a84cf30f5cd303a39148a3281316f95360e7743899a
    Size: 760.15 kB
  2. ctdb-tests-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: 27bee02bd3c3323c75b9b3a25ff39bad
    SHA-256: f17c9a01567e6e40edce3b0a61f454085a8ee929984e7a40750ec0a5c07f9e5d
    Size: 1.30 MB
  3. libsmbclient-4.10.16-25.0.1.el7.AXS7.i686.rpm
    MD5: cf2ff3ed74f95d47712b1f3b6da5f203
    SHA-256: 5e306a372781a63c0fe2d035ef24f51546a1744561dae3c4f39d8bdf87b20768
    Size: 146.11 kB
  4. libsmbclient-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: 97a386746c9171b2475b8ce139c380b7
    SHA-256: d337a141e53872ccceced4cc2d6e746f10e39caf9b3bfcc9af1eb52b5b0e32cb
    Size: 145.82 kB
  5. libwbclient-4.10.16-25.0.1.el7.AXS7.i686.rpm
    MD5: fd4767a00e3e787e85acb36b51129176
    SHA-256: b30581d68a87e0e31d7f9114fb4cd10dd16d224e80c9b8ea2599295537d7623e
    Size: 117.05 kB
  6. libwbclient-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: b8d63b53f203f58f11917b4c49088ea6
    SHA-256: 120e6501016194893c232ad943317a046110b5455ed10cf6c8a6556750db569d
    Size: 116.25 kB
  7. samba-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: f60a836254504e986440b9a22f1255f5
    SHA-256: 81ffa7726d6af8b377a1378c120b8fe18e0a84fa8046c5ca855e30887f69ccb0
    Size: 722.20 kB
  8. samba-client-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: 5b1fc075db8f15a2e68989a919cb7369
    SHA-256: 111597676d6b385e70949d455e7eeac8c7270e8d9f6152a94353ba55d666cd5b
    Size: 646.40 kB
  9. samba-client-libs-4.10.16-25.0.1.el7.AXS7.i686.rpm
    MD5: 0a2b199ea2d73970f62c021e96a04100
    SHA-256: ed9620540f98755b20ac9e2def0a24612aa884fe0f26d22ddefbdca1dc1a5c27
    Size: 5.07 MB
  10. samba-client-libs-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: 26334036c6835f582336d2ae71025da7
    SHA-256: f400179a3da70ce5343336988f96f78e54b1cbcf1845f10d03551ee0c31ec44a
    Size: 5.00 MB
  11. samba-common-4.10.16-25.0.1.el7.AXS7.noarch.rpm
    MD5: 490e4f1db5a4f7f08ff80935e44f848f
    SHA-256: 5767c1c7183ffda82893bbca3ef45463dbd14a77731e241104ab75418092789d
    Size: 218.35 kB
  12. samba-common-libs-4.10.16-25.0.1.el7.AXS7.i686.rpm
    MD5: 91765e0423d3e591d097c2a4bbb40881
    SHA-256: 60c5dc53b6c3d7c0e6da82e91f4d2e019cbbe607b93e67889dd989003e5058d4
    Size: 178.04 kB
  13. samba-common-libs-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: c79320ca352bedc5d4c8514ee99a1ef2
    SHA-256: 8faafdd12f61e17cb24dead33b5dbfadcaf5e5891e3af9c28f5c54e8976f9d85
    Size: 182.38 kB
  14. samba-common-tools-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: 9128b33ad7dbc98e74e311ca26151332
    SHA-256: c586c87ed5d0e7ee05d04b219cd58a6f065e70ec43d691991443748e9d07293b
    Size: 467.26 kB
  15. samba-krb5-printing-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: ed5dd7faaf90aed437f016f7358322a1
    SHA-256: e7d2403a7926051cd87b1f841d74c35ac3b19ba232b324c4d004d8086659466f
    Size: 95.81 kB
  16. samba-libs-4.10.16-25.0.1.el7.AXS7.i686.rpm
    MD5: af69f204ab327c38c147f04af2e44325
    SHA-256: 304b724f5bb86b55c355efb735ac357d5f6f0535b6140f3ff4188109fad9204a
    Size: 276.12 kB
  17. samba-libs-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: ace8030e44ce716d9843d205c79268f8
    SHA-256: 44951de387134bafe5f7f4a8dfb85090799d0381710cb7abaca240e2a4624f43
    Size: 271.21 kB
  18. samba-python-4.10.16-25.0.1.el7.AXS7.i686.rpm
    MD5: b2d858188384a4eb02d76657754c48a5
    SHA-256: e108d67dc222c689831f0142294e0c11cd437fc44771244542cceb6b61378be0
    Size: 2.73 MB
  19. samba-python-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: ff7e70bee38497a486abe90f09f15158
    SHA-256: 188c6659b42bd4e06ccb64f2f6b945906bb76bba2058f494cdb9622573bb1247
    Size: 2.95 MB
  20. samba-winbind-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: 24d827c2fcf5448f6087f84c92814c30
    SHA-256: b42d6b09be2582cbc03d7392df959e513558db136c104c1e9b28a4134edd5e21
    Size: 560.37 kB
  21. samba-winbind-clients-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: 5ee2a0f52400df1a664962b367e2803d
    SHA-256: 2487f2ef351862a16a0f3cd5e4d88f663ac827bc1c091808b90807f31022266c
    Size: 148.80 kB
  22. samba-winbind-modules-4.10.16-25.0.1.el7.AXS7.i686.rpm
    MD5: de35029104145928e58dc9cfb6c843ec
    SHA-256: d8bf2f327ba86aa51addaf7ec41169d20a7b01e9992ae2f944dc2a1d46173de3
    Size: 123.40 kB
  23. samba-winbind-modules-4.10.16-25.0.1.el7.AXS7.x86_64.rpm
    MD5: f07f429dfb29aceaedaa123d097ce341
    SHA-256: 93ad0559bb506ead645a29245f3d26608567b3142c082236f581b75e9cc61700
    Size: 123.12 kB