You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa samba

Sigurnosni nedostaci programskog paketa samba

——————————————————————————–
Fedora Update Notification
FEDORA-2020-6bd386c7eb
2020-02-02 01:33:47.288542
——————————————————————————–

Name : samba
Product : Fedora 31
Version : 4.11.6
Release : 0.fc31
URL : https://www.samba.org
Summary : Server and Client software to interoperate with Windows machines
Description :
Samba is the standard Windows interoperability suite of programs for Linux and
Unix.

——————————————————————————–
Update Information:

Update to Samba 4.11.6 —- Update to Samba 4.11.5 – Security fixes for
CVE-2019-14902, CVE-2019-14907 and CVE-2019-19344
——————————————————————————–
ChangeLog:

* Tue Jan 28 2020 Guenther Deschner <gdeschner@redhat.com> – 4.11.6-0
– Update to Samba 4.11.6
* Tue Jan 21 2020 Guenther Deschner <gdeschner@redhat.com> – 4.11.5-0
– Update to Samba 4.11.5
– resolves: #1791201, #1793405 – Security fixes for CVE-2019-14902
– resolves: #1791207, #1793407 – Security fixes for CVE-2019-14907
– resolves: #1791204, #1793406 – Security fixes for CVE-2019-19344
* Mon Dec 16 2019 Guenther Deschner <gdeschner@redhat.com> – 4.11.4-0
– Update to Samba 4.11.4
* Tue Dec 10 2019 Guenther Deschner <gdeschner@redhat.com> – 4.11.3-0
– Update to Samba 4.11.3
– resolves: #1778586, #1781542 – Security fixes for CVE-2019-14861
– resolves: #1778589, #1781545 – Security fixes for CVE-2019-14870
* Thu Dec 5 2019 Andreas Schneider <asn@redhat.com> – 4.11.2-2
– Restart winbindd on samba-winbind package upgrade
* Wed Nov 6 2019 Alexander Bokovoy <abokovoy@redhat.com> – 4.11.2-1
– Update DES removal patch
* Tue Oct 29 2019 Guenther Deschner <gdeschner@redhat.com> – 4.11.2-0
– Update to Samba 4.11.2
– resolves: #1763137, #1766558 – Security fixes for CVE-2019-10218
– resolves: #1764126, #1766559 – Security fixes for CVE-2019-14833
* Sun Oct 27 2019 Alexander Bokovoy <abokovoy@redhat.com> – 4.11.1-1
– resolves: #1757071 – Deploy new samba DC fails
* Fri Oct 18 2019 Guenther Deschner <gdeschner@redhat.com> – 4.11.1-0
– Update to Samba 4.11.1
——————————————————————————–
References:

[ 1 ] Bug #1791201 – CVE-2019-14902 samba: Replication of ACLs set to inherit down a subtree on AD Directory not automatic
https://bugzilla.redhat.com/show_bug.cgi?id=1791201
[ 2 ] Bug #1791207 – CVE-2019-14907 samba: Crash after failed character conversion at log level 3 or above
https://bugzilla.redhat.com/show_bug.cgi?id=1791207
[ 3 ] Bug #1791204 – CVE-2019-19344 samba: Use after free during DNS zone scavenging in Samba AD DC
https://bugzilla.redhat.com/show_bug.cgi?id=1791204
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2020-6bd386c7eb’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

Top
More in Preporuke
Sigurnosni nedostaci programskog paketa spamassassin

Otkriveni su sigurnosni nedostaci u programskom paketu spamassassin za operacijski sustav Debian. Otkriveni nedostaci potencijalnim napadačima omogućuju izvršavanje proizvoljnog programskog...

Close