Bug 43145 - Samba: Multiple issues (3.3)
Samba: Multiple issues (3.3)
Status: CLOSED FIXED
Product: UCS
Classification: Unclassified
Component: Security updates
UCS 3.3
Other Linux
: P1 normal (vote)
: UCS 3.3-0-errata
Assigned To: Arvid Requate
Felix Botner
:
Depends on: 43144
Blocks:
  Show dependency treegraph
 
Reported: 2016-12-09 11:19 CET by Arvid Requate
Modified: 2016-12-19 14:44 CET (History)
0 users

See Also:
What kind of report is it?: Security Issue
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Ticket number:
Bug group (optional):
Max CVSS v3 score: 8.1 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Arvid Requate univentionstaff 2016-12-09 11:19:20 CET
+++ This bug was initially created as a clone of Bug #43144 +++

A security update for Samba is planned for Monday, December 19:

* NDR Parsing ndr_pull_dnsp_name Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2016-2123)

* Unconditional privilege delegation to Kerberos servers in trusted realms (CVE-2016-2125)

* Flaws in Kerberos PAC validation can trigger privilege elevation (CVE-2016-2126)
Comment 1 Arvid Requate univentionstaff 2016-12-12 16:49:19 CET
Rebuilt with patch. Advisory doesn't contain details yet.
Comment 2 Arvid Requate univentionstaff 2016-12-13 20:54:08 CET
Another patch was added a couple of minutes ago, which hadn't been included in the upstream backport patch for Samba 4.3. The package is building again now.
Advisory is adjusted.
Comment 3 Arvid Requate univentionstaff 2016-12-13 21:40:12 CET
The patch for Bug 41729 hadn't been backport to UCS 3.3, I've included that too now. That required some shuffling with the patches because there was no space after 99_...

Package is building, Advisory is adjusted.
Comment 4 Felix Botner univentionstaff 2016-12-16 09:45:05 CET
OK - patches

OK - window client join (win7, win8)
OK - windows logon
OK - univention-s4search, drs repl
OK - kerberos
OK - GPO's
OK - share access
OK - samba update in 3.3-0
OK - update to 4.0-1
Comment 5 Arvid Requate univentionstaff 2016-12-19 12:59:42 CET
<http://errata.software-univention.de/ucs/3.3/28.html>