drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Zwei Probleme in Samba
Name: |
Zwei Probleme in Samba |
|
ID: |
FEDORA-2013-23085 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 19 |
|
Datum: |
So, 15. Dezember 2013, 10:14 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6150
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4408 |
|
Applikationen: |
Samba |
|
Originalnachricht |
Name : samba Product : Fedora 19 Version : 4.0.13 Release : 1.fc19 URL : http://www.samba.org/ Summary : Server and Client software to interoperate with Windows machines Description : Samba is the standard Windows interoperability suite of programs for Linux and Unix.
------------------------------------------------------------------------------- - Update Information:
This updates Samba to version 4.0.13, which fixes two security bugs. ------------------------------------------------------------------------------- - ChangeLog:
* Mon Dec 9 2013 - Andreas Schneider <asn@redhat.com> 2:4.0.12-1 - Update to Samba 4.0.13. - resolves: #1039454 - CVE-2013-4408. - resolves: #1039500 - CVE-2012-6150. * Tue Nov 26 2013 - Guenther Deschner <gdeschner@redhat.com> 2:4.0.11-2 - resolves: #1030964 - Fix winbind cache keysize limitations. * Mon Nov 11 2013 - Andreas Schneider <asn@redhat.com> 2:4.0.11-1 - resolves: #1024544 - Fix CVE-2013-4475. * Wed Oct 16 2013 - Andreas Schneider <asn@redhat.com> 2:4.0.9-3 - resolves: #1018856 - Fix installation of pam_winbind after upgrade. - related: #1010722 - Split out a samba-winbind-modules package. * Fri Oct 4 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.9-2 - resolves: #1010722 - Split out a samba-winbind-modules package. * Tue Aug 20 2013 - Guenther Deschner <gdeschner@redhat.com> 2:4.0.9-1 - Update to Samba 4.0.9 * Mon Aug 5 2013 - Andreas Schneider <asn@redhat.com> 2:4.0.8-1 - Update to Samba 4.0.8 - resolves: #993043 - CVE-2013-4124 [fedora-all] - resolves: #984401 - CVE-2013-4124 DoS via integer overflow when reading an EA list - related: #985107 - Fix wbinfo error message of unknown command for --krb5ccname. * Wed Jul 24 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.7-3 - resolves: #985107 - Add support for new default location for Kerberos credential caches. * Mon Jul 15 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.7-2 - resolves: #972692 - Build with PIE and full RELRO. - resolves: #884169 - Add explicit dependencies suggested by rpmdiff. - resolves: #981033 - Local user's krb5cc deleted by winbind. - resolves: #984331 - Fix samba-common tmpfiles configuration file in wrong directory. * Wed Jul 3 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.7-1 - Update to Samba 4.0.7. ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #1039454 - CVE-2013-4408 samba: Heap-based buffer overflow due to incorrect DCE-RPC fragment length field check [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1039454 [ 2 ] Bug #1039500 - CVE-2012-6150 samba: pam_winbind fails open when non-existent group specified to require_membership_of [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1039500 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update samba' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|