Summary: | <net-fs/samba-4.5.10: Loading shared modules from any path in the system leading to RCE | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Liferer <liferer> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | dan, john_r_graham, phmagic, samba, till2.schaefer |
Priority: | Normal | Flags: | stable-bot:
sanity-check-
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://www.samba.org/samba/security/CVE-2017-7494.html | ||
Whiteboard: | B1 [glsa+ cve] | ||
Package list: |
=net-dns/resolv_wrapper-1.1.5
=net-fs/samba-4.5.10-r1
=net-libs/socket_wrapper-1.1.7
=sys-libs/ldb-1.1.29-r1
=sys-libs/nss_wrapper-1.1.3
=sys-libs/talloc-2.1.9
=sys-libs/tdb-1.3.13
=sys-libs/tevent-0.9.31-r1
=sys-libs/uid_wrapper-1.2.1
|
Runtime testing required: | --- |
Bug Depends on: | 588262, 591304, 621624, 639024, 650382 | ||
Bug Blocks: | 616774 |
Description
Liferer
2017-05-24 08:27:32 UTC
commit 495f960e6f59116bc5ed7359921dd5e64d3c8204 Author: Lars Wendler <polynomial-c@gentoo.org> Date: Wed May 24 11:44:09 2017 net-fs/samba: Security bump to versions 4.5.10 and 4.6.4 (bug #619516). Package-Manager: Portage-2.3.6, Repoman-2.3.2 *** Bug 619632 has been marked as a duplicate of this bug. *** Arches please test and mark stable the following list of packages: =net-fs/samba-4.5.10 =sys-libs/ldb-1.1.29-r1 =sys-libs/talloc-2.1.9 =sys-libs/tdb-1.3.13 =sys-libs/tevent-0.9.31-r1 Target KEYWORDS are: alpha amd64 arm hppa ia64 ppc ppc64 sparc x86 src_configure failure on ppc and ppc64 Checking for system resolv_wrapper >= 1.1.4 : not found ERROR: System library resolv_wrapper of version 1.1.4 not found, and bundling disabled src_configure failure on ppc and ppc64 Checking for system socket_wrapper >= 1.1.7 : not found ERROR: System library socket_wrapper of version 1.1.7 not found, and bundling disabled You'd like to add DEPEND+="test? ( >=net-libs/socket_wrapper-1.1.7 >=net-dns/resolv_wrapper-1.1.4 )" (In reply to Michael Weber from comment #6) > You'd like to add > > DEPEND+="test? ( >=net-libs/socket_wrapper-1.1.7 > >=net-dns/resolv_wrapper-1.1.4 )" sry, uncond. RDEPEND. commit 03dddbf85b3437544b19947e16b05096f88c397d (HEAD -> master, origin/master, origin/HEAD) Author: Lars Wendler <polynomial-c@gentoo.org> Date: Fri May 26 13:38:33 2017 net-fs/samba: Added missing test deps. Removed missing keywords. Package-Manager: Portage-2.3.6, Repoman-2.3.2 Arches please test and mark stable the following list of packages: =net-dns/resolv_wrapper-1.1.5 (USE="test" only) =net-fs/samba-4.5.10 =net-libs/socket_wrapper-1.1.7 (USE="test" only) =sys-libs/ldb-1.1.29-r1 =sys-libs/nss_wrapper-1.1.3 (USE="test" only) =sys-libs/talloc-2.1.9 =sys-libs/tdb-1.3.13 =sys-libs/tevent-0.9.31-r1 =sys-libs/uid_wrapper-1.2.1 (USE="test" only) Target KEYWORDS are: alpha amd64 arm hppa ia64 ppc ppc64 sparc x86 amd64 stable x86 stable ppc64 stable Stable on alpha. sparc stable ia64 stable ppc stable Arches, please finish stabilizing hppa Gentoo Security Padawan ChrisADR An automated check of this bug failed - the following atom is unknown: net-fs/samba-4.5.10 Please verify the atom list. An automated check of this bug failed - the following atom is unknown: net-fs/samba-4.5.10 Please verify the atom list. An automated check of this bug failed - the following atom is unknown: net-fs/samba-4.5.10-r1 Please verify the atom list. This issue was resolved and addressed in GLSA 201805-07 at https://security.gentoo.org/glsa/201805-07 by GLSA coordinator Aaron Bauman (b-man). |