USN-6425-1 fixed vulnerabilities in Samba. This update provides the corresponding updates for Ubuntu 23.10.
Original advisory details:
Sri Nagasubramanian discovered that the Samba acl_xattr VFS module incorrectly handled read-only files. When Samba is configured to ignore system ACLs, a remote attacker could possibly use this issue to truncate read-only files. (CVE-2023-4091)
Andrew Bartlett discovered that Samba incorrectly handled the DirSync control. A remote attacker with an RODC DC account could possibly use this issue to obtain all domain secrets. (CVE-2023-4154)
Andrew Bartlett discovered that Samba incorrectly handled the rpcecho development server. A remote attacker could possibly use this issue to cause Samba to stop responding, resulting in a denial of service. (CVE-2023-42669)
Kirin van der Veer discovered that Samba incorrectly handled certain RPC service listeners. A remote attacker could possibly use this issue to cause Samba to start multiple incompatible RPC listeners, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS, and Ubuntu 23.04. (CVE-2023-42670)
{ "availability": "No subscription required", "binaries": [ { "ldb-tools": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1", "libldb2-dbgsym": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1", "samba-libs": "2:4.18.6+dfsg-1ubuntu2.1", "registry-tools": "2:4.18.6+dfsg-1ubuntu2.1", "libldb-dev": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1", "libwbclient0-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "samba-common-bin": "2:4.18.6+dfsg-1ubuntu2.1", "libpam-winbind-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "libnss-winbind-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "libldb2": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1", "winbind": "2:4.18.6+dfsg-1ubuntu2.1", "samba-vfs-modules": "2:4.18.6+dfsg-1ubuntu2.1", "python3-samba-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "python3-ldb-dbgsym": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1", "samba-dsdb-modules-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "libwbclient-dev": "2:4.18.6+dfsg-1ubuntu2.1", "samba-common-bin-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "samba-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "samba-testsuite": "2:4.18.6+dfsg-1ubuntu2.1", "smbclient-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "libsmbclient": "2:4.18.6+dfsg-1ubuntu2.1", "libwbclient0": "2:4.18.6+dfsg-1ubuntu2.1", "samba": "2:4.18.6+dfsg-1ubuntu2.1", "libsmbclient-dev": "2:4.18.6+dfsg-1ubuntu2.1", "samba-dsdb-modules": "2:4.18.6+dfsg-1ubuntu2.1", "python3-samba": "2:4.18.6+dfsg-1ubuntu2.1", "samba-vfs-modules-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "ldb-tools-dbgsym": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1", "ctdb": "2:4.18.6+dfsg-1ubuntu2.1", "python3-ldb": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1", "registry-tools-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "libnss-winbind": "2:4.18.6+dfsg-1ubuntu2.1", "libsmbclient-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "samba-ad-provision": "2:4.18.6+dfsg-1ubuntu2.1", "winbind-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "samba-testsuite-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "samba-common": "2:4.18.6+dfsg-1ubuntu2.1", "samba-libs-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "samba-ad-dc": "2:4.18.6+dfsg-1ubuntu2.1", "libpam-winbind": "2:4.18.6+dfsg-1ubuntu2.1", "smbclient": "2:4.18.6+dfsg-1ubuntu2.1", "samba-dev": "2:4.18.6+dfsg-1ubuntu2.1", "ctdb-dbgsym": "2:4.18.6+dfsg-1ubuntu2.1", "python3-ldb-dev": "2:2.7.2+samba4.18.6+dfsg-1ubuntu2.1" } ] }