910335 – net-fs/samba: secure channel faulty since Windows 10/11 update 2023-07

Bug 910335 - net-fs/samba: secure channel faulty since Windows 10/11 update 2023-07

Summary: net-fs/samba: secure channel faulty since Windows 10/11 update 2023-07

Status:	RESOLVED DUPLICATE of bug 910306

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Linux bug wranglers

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2023-07-14 11:57 UTC by Krzysztof Olędzki
Modified:	2023-07-14 14:14 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Krzysztof Olędzki 2023-07-14 11:57:22 UTC

Since the most recent Windows updates from 2023-07 which implemented Netlogon protocol changes related to CVE-2022-38023 Windows 10 / Windows 11 is unable to establish secure channel with Samba in Active Directory. This impacts Login, RDP, Remote Assistance, file / printer sharing, and more.

Because of the protocol changes on the client side, all Samba versions are impacted.

Samba developers are currently working on a fix and it seems at least an initial version may be available soon, but this means that we may need to grab the patch once available and incorporate into a current build or, if a new emergency version released, update the builds in addition to https://bugs.gentoo.org/910334 that I just filled.

Upstream bug: https://bugzilla.samba.org/show_bug.cgi?id=15418

More information: https://support.microsoft.com/en-us/topic/kb5021130-how-to-manage-the-netlogon-protocol-changes-related-to-cve-2022-38023-46ea3067-3989-4d40-963c-680fd9e8ee25

Comment 1 Sam James archtester

2023-07-14 11:58:02 UTC

Can you post the information in bug 910306? Thanks.

*** This bug has been marked as a duplicate of bug 910306 ***