Bug 55511 – samba: Multiple issues (5.0)

Bug 55511 - samba: Multiple issues (5.0)


Summary:	samba: Multiple issues (5.0)

Status:	CLOSED FIXED

Product:	UCS
Classification:	Unclassified
Component:	Security updates
Version:	UCS 5.0
Hardware:	Other Linux

Importance:	P5 normal (vote)
Target Milestone:	UCS 5.0-2-errata
Assigned To:	Arvid Requate
QA Contact:	Julia Bremer

URL:
Keywords:

Depends on:
Blocks:	55532
	Show dependency tree / graph

Reported:	2022-12-20 18:38 CET by Arvid Requate
Modified:	2023-01-18 18:46 CET (History)
CC List:	2 users (show)

See Also:
What kind of report is it?:	Security Issue
What type of bug is this?:	---
Who will be affected by this bug?:	---
How will those affected feel about the bug?:	---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):	Security
Max CVSS v3 score:	8.1 (CVSS:v3.1:AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Arvid Requate

2022-12-20 18:38:59 CET

Samba 4.16.8 has been released

https://www.samba.org/samba/history/samba-4.16.8.html

It addresses security issues:

* https://www.samba.org/samba/security/CVE-2022-37966.html
* https://www.samba.org/samba/security/CVE-2022-37967.html
* https://www.samba.org/samba/security/CVE-2022-38023.html

Comment 1 Arvid Requate

2023-01-06 21:26:54 CET

r19730 | patches updated to new upstream release
r19731 | patches updated to new upstream release
ae757b9bc9 | Advisory

Package: samba
Version: 2:4.16.8-1A~5.0.0.202301062105
Branch: ucs_5.0-0
Scope: errata5.0-2

Comment 2 Julia Bremer

2023-01-18 16:32:56 CET

OK: Patches applied
OK: Package Upgrade
OK: Jenkins
OK: legacy services without aes keys can authenticate still authenticate
OK: YAML


Verified

Comment 3 Philipp Hahn

2023-01-18 18:46:26 CET

<https://errata.software-univention.de/#/?erratum=5.0x543>