Publishing details

Removed from disk on 2021-12-03.
Removal requested on 2021-12-03.
Superseded on 2021-12-02 by samba - 2:4.7.6+dfsg~ubuntu-0ubuntu2.26
Published on 2021-11-23

Changelog

samba (2:4.7.6+dfsg~ubuntu-0ubuntu2.25) bionic-security; urgency=medium

  * SECURITY UPDATE: SMB1 client connections can be downgraded to plaintext
    authentication
    - debian/patches/CVE-2016-2124-*.patch: upstream commits to fix issue.
    - CVE-2016-2124
  * SECURITY UPDATE: user in AD Domain could become root on domain members
    - debian/patches/CVE-2020-25717-*.patch: upstream commits to fix issue.
    - CVE-2020-25717
  * SECURITY UPDATE: insufficient access and conformance checking of data
    stored
    - debian/patches/CVE-2020-25722-1.patch: restrict the setting of
      privileged attributes during LDAP add/modify in
      source4/dsdb/samdb/ldb_modules/samldb.c.
    - debian/patches/CVE-2020-25722-2.patch: ensure the structural
      objectclass cannot be changed in
      source4/dsdb/samdb/ldb_modules/objectclass.c.
    - CVE-2020-25722
  * SECURITY UPDATE: null pointer deref in kerberos server
    - debian/patches/CVE-2021-3671.patch: validate sname in TGS-REQ in
      source4/heimdal/kdc/krb5tgs.c.
    - CVE-2021-3671

 -- Marc Deslauriers <email address hidden>  Mon, 22 Nov 2021 10:09:59 -0500

Available diffs

diff from 2:4.7.6+dfsg~ubuntu-0ubuntu2.20 to 2:4.7.6+dfsg~ubuntu-0ubuntu2.25 (31.6 KiB)

Builds

Package files

No files published for this package.