Summary: | <net-fs/samba-{4.11.8,4.12.2}: Multiple vulnerabilities (CVE-2020-{10700,10704}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sam James <sam> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | samba |
Priority: | Normal | Flags: | nattka:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://lists.samba.org/archive/samba-announce/2020/000519.html | ||
Whiteboard: | B3 [glsa+ cve] | ||
Package list: |
=net-fs/samba-4.11.8 amd64 arm arm64 ppc ppc64 sparc x86
=sys-libs/ldb-2.0.10 amd64 arm arm64 ppc ppc64 sparc x86
|
Runtime testing required: | --- |
Bug Depends on: | 730472 | ||
Bug Blocks: |
Description
Sam James
2020-04-23 20:03:42 UTC
From URL: o CVE-2020-10700: A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a use-after-free in Samba's AD DC LDAP server. o CVE-2020-10704: A deeply nested filter in an un-authenticated LDAP search can exhaust the LDAP server's stack memory causing a SIGSEGV. ---- Advisories: https://www.samba.org/samba/security/CVE-2020-10700.html https://www.samba.org/samba/security/CVE-2020-10704.html @maintainer(s), please bump to 4.12.2, 4.11.8, 4.10.15. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=4afede92da41b093bdbb6aa0581e8d5a0a25fb5f commit 4afede92da41b093bdbb6aa0581e8d5a0a25fb5f Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2020-04-29 09:38:01 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2020-04-29 09:38:36 +0000 net-fs/samba: Security bump to versions 4.11.8 and 4.12.2 Bug: https://bugs.gentoo.org/719120 Package-Manager: Portage-2.3.99, Repoman-2.3.22 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> net-fs/samba/Manifest | 2 + net-fs/samba/samba-4.11.8.ebuild | 314 +++++++++++++++++++++++++++++++++++++++ net-fs/samba/samba-4.12.2.ebuild | 312 ++++++++++++++++++++++++++++++++++++++ 3 files changed, 628 insertions(+) (In reply to Sam James (sec padawan) from comment #2) > @maintainer(s), please bump to 4.12.2, 4.11.8, 4.10.15. We're no longer providing samba-4.10.x Sanity check failed:
> net-fs/samba-4.11.8
> depend amd64 stable profile default/linux/amd64/17.0 (22 total)
> >=sys-libs/ldb-2.0.10[abi_x86_32(-),abi_x86_64(-),ldap(+),python,python_single_target_python3_6(-),python_single_target_python3_7(-)]
> depend amd64 stable profile default/linux/amd64/17.0/no-multilib (6 total)
> >=sys-libs/ldb-2.0.10[abi_x86_64(-),ldap(+),python,python_single_target_python3_6(-),python_single_target_python3_7(-)]
> depend amd64 dev profile default/linux/amd64/17.0/no-multilib/prefix/kernel-3.2+ (1 total)
> >=sys-libs/ldb-2.0.10[abi_x86_64(-),ldap(+),python,python_single_target_python3_6(-),python_single_target_python3_7(-)]
> depend amd64 dev profile default/linux/amd64/17.0/x32 (1 total)
> >=sys-libs/ldb-2.0.10[abi_x86_32(-),abi_x86_64(-),abi_x86_x32(-),ldap(+),python,python_single_target_python3_6(-),python_single_target_python3_7(-)]
> rdepend amd64 stable profile default/linux/amd64/17.0 (22 total)
> >=sys-libs/ldb-2.0.10[abi_x86_32(-),abi_x86_64(-),ldap(+),python,python_single_target_python3_6(-),python_single_target_python3_7(-)]
> rdepend amd64 stable profile default/linux/amd64/17.0/no-multilib (6 total)
> >=sys-libs/ldb-2.0.10[abi_x86_64(-),ldap(+),python,python_single_target_python3_6(-),python_single_target_python3_7(-)]
> rdepend amd64 dev profile default/linux/amd64/17.0/no-multilib/prefix/kernel-3.2+ (1 total)
> >=sys-libs/ldb-2.0.10[abi_x86_64(-),ldap(+),python,python_single_target_python3_6(-),python_single_target_python3_7(-)]
> rdepend amd64 dev profile default/linux/amd64/17.0/x32 (1 total)
> >=sys-libs/ldb-2.0.10[abi_x86_32(-),abi_x86_64(-),abi_x86_x32(-),ldap(+),python,python_single_target_python3_6(-),python_single_target_python3_7(-)]
> depend arm stable profile default/linux/arm/17.0 (28 total)
> >=sys-libs/ldb-2.0.10[ldap(+),python,python_single_target_python3_6(-)]
> depend arm dev profile default/linux/arm/17.0/armv4 (33 total)
> >=sys-libs/ldb-2.0.10[ldap(+),python,python_single_target_python3_6(-)]
> rdepend arm stable profile default/linux/arm/17.0 (28 total)
> >=sys-libs/ldb-2.0.10[ldap(+),python,python_single_target_python3_6(-)]
> rdepend arm dev profile default/linux/arm/17.0/armv4 (33 total)
> >=sys-libs/ldb-2.0.10[ldap(+),python,python_single_target_python3_6(-)]
> depend arm64 stable profile default/linux/arm64/17.0 (9 total)
> >=sys-libs/ldb-2.0.10[ldap(+),python_single_target_python3_6(-),python_single_target_python3_7(-)]
> rdepend arm64 stable profile default/linux/arm64/17.0 (9 total)
> >=sys-libs/ldb-2.0.10[ldap(+),python_single_target_python3_6(-),python_single_target_python3_7(-)]
> depend x86 stable profile default/linux/x86/17.0 (11 total)
> >=sys-libs/ldb-2.0.10[abi_x86_32(-),ldap(+),python,python_single_target_python3_6(-),python_single_target_python3_7(-)]
> rdepend x86 stable profile default/linux/x86/17.0 (11 total)
> >=sys-libs/ldb-2.0.10[abi_x86_32(-),ldap(+),python,python_single_target_python3_6(-),python_single_target_python3_7(-)]
All sanity-check issues have been resolved arm64 stable ppc/ppc64 stable x86 stable amd64 stable Please finish stabilization - arm - sparc arm stable sparc stable Please cleanup. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b32c611babc168729365872f34b036c3e85e4d03 commit b32c611babc168729365872f34b036c3e85e4d03 Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2020-06-25 08:30:39 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2020-06-25 08:34:42 +0000 net-fs/samba: Security cleanup Bug: https://bugs.gentoo.org/719120 Package-Manager: Portage-2.3.103, Repoman-2.3.23 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> net-fs/samba/Manifest | 1 - net-fs/samba/samba-4.11.6-r2.ebuild | 316 ------------------------------------ 2 files changed, 317 deletions(-) GLSA vote: yes! This issue was resolved and addressed in GLSA 202007-15 at https://security.gentoo.org/glsa/202007-15 by GLSA coordinator Sam James (sam_c). |