USN-6425-3

See a problem?

Source

https://ubuntu.com/security/notices/USN-6425-3

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6425-3.json

JSON Data

https://api.osv.dev/v1/vulns/USN-6425-3

Related

Published

2023-10-17T11:34:39.060540Z

Modified

2023-10-17T11:34:39.060540Z

Summary

samba vulnerabilities

Details

USN-6425-1 fixed vulnerabilities in Samba. This update provides the corresponding updates for Ubuntu 23.10.

Original advisory details:

Sri Nagasubramanian discovered that the Samba acl_xattr VFS module incorrectly handled read-only files. When Samba is configured to ignore system ACLs, a remote attacker could possibly use this issue to truncate read-only files. (CVE-2023-4091)

Andrew Bartlett discovered that Samba incorrectly handled the DirSync control. A remote attacker with an RODC DC account could possibly use this issue to obtain all domain secrets. (CVE-2023-4154)

Andrew Bartlett discovered that Samba incorrectly handled the rpcecho development server. A remote attacker could possibly use this issue to cause Samba to stop responding, resulting in a denial of service. (CVE-2023-42669)

Kirin van der Veer discovered that Samba incorrectly handled certain RPC service listeners. A remote attacker could possibly use this issue to cause Samba to start multiple incompatible RPC listeners, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS, and Ubuntu 23.04. (CVE-2023-42670)

References

Affected packages

Ubuntu:23.10 / samba

Package

Name: samba
Purl: pkg:deb/ubuntu/samba@2:4.18.6+dfsg-1ubuntu2.1?arch=src?distro=mantic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:4.18.6+dfsg-1ubuntu2.1

Affected versions

2:4.*

2:4.17.7+dfsg-1ubuntu1

2:4.18.3+dfsg-3ubuntu1

2:4.18.5+dfsg-1ubuntu1

2:4.18.5+dfsg-1ubuntu2

2:4.18.6+dfsg-1ubuntu1

2:4.18.6+dfsg-1ubuntu2

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "ldb-tools": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1",
            "libldb2-dbgsym": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1",
            "samba-libs": "2:4.18.6+dfsg-1ubuntu2.1",
            "registry-tools": "2:4.18.6+dfsg-1ubuntu2.1",
            "libldb-dev": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1",
            "libwbclient0-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "samba-common-bin": "2:4.18.6+dfsg-1ubuntu2.1",
            "libpam-winbind-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "libnss-winbind-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "libldb2": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1",
            "winbind": "2:4.18.6+dfsg-1ubuntu2.1",
            "samba-vfs-modules": "2:4.18.6+dfsg-1ubuntu2.1",
            "python3-samba-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "python3-ldb-dbgsym": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1",
            "samba-dsdb-modules-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "libwbclient-dev": "2:4.18.6+dfsg-1ubuntu2.1",
            "samba-common-bin-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "samba-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "samba-testsuite": "2:4.18.6+dfsg-1ubuntu2.1",
            "smbclient-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "libsmbclient": "2:4.18.6+dfsg-1ubuntu2.1",
            "libwbclient0": "2:4.18.6+dfsg-1ubuntu2.1",
            "samba": "2:4.18.6+dfsg-1ubuntu2.1",
            "libsmbclient-dev": "2:4.18.6+dfsg-1ubuntu2.1",
            "samba-dsdb-modules": "2:4.18.6+dfsg-1ubuntu2.1",
            "python3-samba": "2:4.18.6+dfsg-1ubuntu2.1",
            "samba-vfs-modules-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "ldb-tools-dbgsym": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1",
            "ctdb": "2:4.18.6+dfsg-1ubuntu2.1",
            "python3-ldb": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1",
            "registry-tools-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "libnss-winbind": "2:4.18.6+dfsg-1ubuntu2.1",
            "libsmbclient-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "samba-ad-provision": "2:4.18.6+dfsg-1ubuntu2.1",
            "winbind-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "samba-testsuite-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "samba-common": "2:4.18.6+dfsg-1ubuntu2.1",
            "samba-libs-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "samba-ad-dc": "2:4.18.6+dfsg-1ubuntu2.1",
            "libpam-winbind": "2:4.18.6+dfsg-1ubuntu2.1",
            "smbclient": "2:4.18.6+dfsg-1ubuntu2.1",
            "samba-dev": "2:4.18.6+dfsg-1ubuntu2.1",
            "ctdb-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1",
            "python3-ldb-dev": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1"
        }
    ]
}