ELSA-2018-1860

ULN >
Oracle Linux Errata repository >
ELSA-2018-1860

ELSA-2018-1860 - samba security and bug fix update

Type:	SECURITY
Impact:	LOW
Release Date:	2018-06-25

Description

[3.6.23-51.0.1]
- Remove use-after-free talloc_tos() inlined function problem (John Haxby) [orabug 18253258]

[3.6.24-51]
- resolves: #1513877 - Fix memory leak in winbind

[3.6.24-50]
- resolves: #1553018 - Fix CVE-2018-1050

[3.6.24-49]
- resolves: #1536053 - Fix regression with non-wide symlinks to directories

[3.6.24-48]
- resolves: #1519884 - Fix segfault in winbind when querying groups

[3.6.24-47]
- resolves: #1413484 - Fix guest login with signing required

[3.6.24-46]
- resolves: #1509455 - Fix regression of CVE-2017-2619

[3.6.24-45]
- resolves: #1491211 - CVE-2017-2619 CVE-2017-12150 CVE-2017-12163

[3.6.24-44]
- resolves: #1451105 - Fix trusted domain handling in winbind
- resolves: #1431000 - Fix crash while trying to authenticate with a disabled
account
- resolves: #1467395 - Add 'winbind request timeout' option

[3.6.23-43]
- resolves: #1450783 - Fix CVE-2017-7494

[3.6.23-42]
- resolves: #1391256 - Performance issues with vfs_dirsort and extended
attributes

[3.6.23-41]
- resolves: #1413672 - Auth regression after secret changed

[3.6.23-40]
- resolves: #1405356 - CVE-2016-2125 CVE-2016-2126

[3.6.23-39]
- resolves: #1297805 - Fix issues with printer unpublishing from AD

[3.6.23-38]
- resolves: #1347843 - Fix RPC queryUserList returning NO_MEMORY for
empty list

[3.6.23-37]
- resolves: #1380151 - Fix memory leak in idmap_ad module
- resolves: #1333561 - Fix smbclient connection issues to DFS shares
- resolves: #1372611 - Allow ntlmsssp session key setup without signing
(Workaround for broken NetApp and EMC NAS)

[3.6.23-35]
- resolves: #1282289 - Fix winbind memory leak with each cached creds login

[3.6.23-34]
- resolves: #1327697 - Fix netlogon credential checks
- resolves: #1327746 - Fix dcerpc trailer verificaton

[3.6.23-33]
- related: #1322687 - Update CVE patchset

[3.6.23-32]
- related: #1322687 - Update manpages

[3.6.23-31]
- related: #1322687 - Update CVE patchset

[3.6.23-30]
- related: #1322687 - Update CVE patchset

[3.6.23-29]
- resolves: #1322687 - Fix CVE-2015-5370
- resolves: #1322687 - Fix CVE-2016-2110
- resolves: #1322687 - Fix CVE-2016-2111
- resolves: #1322687 - Fix CVE-2016-2112
- resolves: #1322687 - Fix CVE-2016-2115
- resolves: #1322687 - Fix CVE-2016-2118 (Known as Badlock)

[3.6.23-28]
- resolves: #1305870 - Fix symlink verification

[3.6.23-27]
- resolves: #1314671 - Fix CVE-2015-7560

[3.6.23-26]
- resolves: #1211744 - Fix DFS client access with Windows Server 2008

[3.6.23-25]
- resolves: #1242614 - Fix unmappable S-1-18-1 sid truncates group lookups

[3.6.23-24]
- resolves: #1271763 - Fix segfault in NTLMv2_generate_names_blob()
- resolves: #1261265 - Add '--no-dns-updates' option for 'net ads join'

[3.6.23-23]
- resolves: #1290707 - CVE-2015-5299
- related: #1290707 - CVE-2015-5296
- related: #1290707 - CVE-2015-5252
- related: #1290707 - CVE-2015-5330

[3.6.23-22]
- resolves: #1232021 - Do not overwrite smb.conf manpage
- resolves: #1216060 - Document netbios name length limitations
- resolves: #1234249 - Fix 'map to guest = Bad Uid' option
- resolves: #1219570 - Fix 'secuirtiy = server' (obsolete) share access
- resolves: #1211657 - Fix stale cache entries if a printer gets renamed

[3.6.23-21]
- resolves: #1252180 - Fix 'force group' with 'winbind use default domain'.
- resolves: #1250100 - Fix segfault in pam_winbind if option parsing fails
- resolves: #1222985 - Fix segfault with 'mangling method = hash' option

[3.6.23-20]
- resolves: #1164269 - Fix rpcclient timeout command.

[3.6.23-19]
- resolves: #1201611 - Fix 'force user' with 'winbind use default domain'.

[3.6.23-18]
- resolves: #1194549 - Fix winbind caching issue and support SID compression.

[3.6.23-17]
- resolves: #1192211 - Fix restoring shadow copy snapshot with SMB2.

[3.6.23-16]
- resolves: #1117059 - Fix nss group enumeration with unresolved groups.

[3.6.23-15]
- resolves: #1165750 - Fix guid retrieval for published printers.
- resolves: #1163383 - Fix 'net ads join -k' with existing keytab entries.
- resolves: #1195456 - Fix starting daemons on read only filesystems.
- resolves: #1138552 - Fix CPU utilization when re-reading the printcap info.
- resolves: #1144916 - Fix smbclient NTLMv2 authentication.
- resolves: #1164336 - Document 'sharesec' command for
'access based share enum' option.

[3.6.23-14]
- related: #1191339 - Update patchset for CVE-2015-0240.

[3.6.23-13]
- resolves: #1191339 - CVE-2015-0240: RCE in netlogon.

[3.6.23-12]
- resolves: #1127723 - Fix samlogon secure channel recovery.

[3.6.23-11]
- resolves: #1129006 - Add config variables to set spoolss os version.

[3.6.23-10]
- resolves: #1124835 - Fix dropbox share.

[3.6.23-9]
- related: #1053886 - Fix receiving the gecos field with winbind.

[3.6.23-8]
- resolves: #1110733 - Fix write operations as guest with 'security = share'.
- resolves: #1053886 - Fix receiving the gecos field with winbind.

[3.6.23-7]
- resolves: #1107777 - Fix SMB2 with 'case sensitive = True'

[3.6.23-6]
- resolves: #1105500 - CVE-2014-0244: DoS in nmbd.
- resolves: #1108841 - CVE-2014-3493: DoS in smbd with unicode path names.

[3.6.23-5]
- related: #1061301 - Only link glusterfs libraries to vfs module.

[3.6.23-4]
- resolves: #1051656 - Fix gecos field copy debug warning.
- resolves: #1061301 - Add glusterfs vfs module.
- resolves: #1087472 - Fix libsmbclient crash when HOME variable isnt set.
- resolves: #1099443 - 'net ads testjoin' fails with IPv6.
- resolves: #1100670 - Fix 'force user' with 'security = ads'.
- resolves: #1096522 - Fix enabling SMB2 causes file operations to fail.

[3.6.23-3]
- resolves: #1081539 - Add timeout option to smbclient.

[3.6.23-2]
- resolves: #1022534 - Do not build Samba with fam support.
- resolves: #1059301 - Fix nbt query with many components.
- resolves: #1057332 - Fix force user with guest account.
- resolves: #1021706 - Fix %G substitution in 'template homedir'.
- resolves: #1040472 - Fix group expansion in service path.
- resolves: #1069570 - Fix memory leak reading printer list.
- resolves: #1067607 - Fix wbinfo -i with one-way trusts.
- resolves: #1050887 - Fix 100% CPU utilization in winbindd when trying to
free memory in winbindd_reinit_after_fork.
- resolves: #1029000 - Fix 'force user' with 'security = ads'.

[3.6.23-1]
- resolves: #1073356 - Fix CVE-2013-4496, CVE-2012-6150 and CVE-2013-6442.
- resolves: #1018038 - Fix CVE-2013-4408.

[3.6.22-1]
- resolves: #1003921 - Rebase Samba to 3.6.22.
- resolves: #1035332 - Fix force user with 'security = user'.

Related CVEs

CVE-2018-1050

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (i386)	samba-3.6.23-51.0.1.el6.src.rpm	23aa6bbd36f67f0c64e8c703c538e6c197d86ef02fc263669bb7b44dbf1de3e7	ELBA-2019-3858	ol6_i386_latest
	samba-3.6.23-51.0.1.el6.src.rpm	23aa6bbd36f67f0c64e8c703c538e6c197d86ef02fc263669bb7b44dbf1de3e7	ELBA-2019-3858	ol6_u10_i386_base
	libsmbclient-3.6.23-51.0.1.el6.i686.rpm	9e5250d3ff74aa296ba76ebebe1d29d46558f1450388d06f6bab7f5e94cd8ca1	ELBA-2019-3858	ol6_i386_latest
	libsmbclient-3.6.23-51.0.1.el6.i686.rpm	9e5250d3ff74aa296ba76ebebe1d29d46558f1450388d06f6bab7f5e94cd8ca1	ELBA-2019-3858	ol6_u10_i386_base
	libsmbclient-devel-3.6.23-51.0.1.el6.i686.rpm	6502e0873247cab947ef16364482b0874ef5fc0a61134f11626667a3287936b4	ELBA-2019-3858	ol6_i386_latest
	libsmbclient-devel-3.6.23-51.0.1.el6.i686.rpm	6502e0873247cab947ef16364482b0874ef5fc0a61134f11626667a3287936b4	ELBA-2019-3858	ol6_u10_i386_base
	samba-3.6.23-51.0.1.el6.i686.rpm	94153d3ec77141ce555b92ac9211a6efcc3e3ac82033a28e3479e62edf796df9	ELBA-2019-3858	ol6_i386_latest
	samba-3.6.23-51.0.1.el6.i686.rpm	94153d3ec77141ce555b92ac9211a6efcc3e3ac82033a28e3479e62edf796df9	ELBA-2019-3858	ol6_u10_i386_base
	samba-client-3.6.23-51.0.1.el6.i686.rpm	0385b184312ab1a0dd0c9e3e6c40ccc8e77348c42a1b118c0558ccd358484194	ELBA-2019-3858	ol6_i386_latest
	samba-client-3.6.23-51.0.1.el6.i686.rpm	0385b184312ab1a0dd0c9e3e6c40ccc8e77348c42a1b118c0558ccd358484194	ELBA-2019-3858	ol6_u10_i386_base
	samba-common-3.6.23-51.0.1.el6.i686.rpm	0ad0a5248399f64acc0193938b4a6098471fb118e9bc0d9c982a98d5fd847e19	ELBA-2019-3858	ol6_i386_latest
	samba-common-3.6.23-51.0.1.el6.i686.rpm	0ad0a5248399f64acc0193938b4a6098471fb118e9bc0d9c982a98d5fd847e19	ELBA-2019-3858	ol6_u10_i386_base
	samba-doc-3.6.23-51.0.1.el6.i686.rpm	bfc50f1165e461800e761f534b7779b04de8b503751906b0068527f0c57e259e	ELBA-2019-3858	ol6_i386_latest
	samba-doc-3.6.23-51.0.1.el6.i686.rpm	bfc50f1165e461800e761f534b7779b04de8b503751906b0068527f0c57e259e	ELBA-2019-3858	ol6_u10_i386_base
	samba-domainjoin-gui-3.6.23-51.0.1.el6.i686.rpm	c15790304a54acf784d243d9ce4e0e9315550d5a553b225adfc8cd9fb7478ff7	ELBA-2019-3858	ol6_i386_latest
	samba-domainjoin-gui-3.6.23-51.0.1.el6.i686.rpm	c15790304a54acf784d243d9ce4e0e9315550d5a553b225adfc8cd9fb7478ff7	ELBA-2019-3858	ol6_u10_i386_base
	samba-swat-3.6.23-51.0.1.el6.i686.rpm	8990a73532873ed72f1e013bcc1bcb5ca9ca759b7ec2b72a7e0ef1a3e17fea7f	ELBA-2019-3858	ol6_i386_latest
	samba-swat-3.6.23-51.0.1.el6.i686.rpm	8990a73532873ed72f1e013bcc1bcb5ca9ca759b7ec2b72a7e0ef1a3e17fea7f	ELBA-2019-3858	ol6_u10_i386_base
	samba-winbind-3.6.23-51.0.1.el6.i686.rpm	e29dc1086ac21991455a70ff0b042519d20668ca597d933a03a0f41cd75fc33f	ELBA-2019-3858	ol6_i386_latest
	samba-winbind-3.6.23-51.0.1.el6.i686.rpm	e29dc1086ac21991455a70ff0b042519d20668ca597d933a03a0f41cd75fc33f	ELBA-2019-3858	ol6_u10_i386_base
	samba-winbind-clients-3.6.23-51.0.1.el6.i686.rpm	01072691cf46dfdcc98d3f9e68000582fc7b689cefb5d041ba9dcbada7c1c2a6	ELBA-2019-3858	ol6_i386_latest
	samba-winbind-clients-3.6.23-51.0.1.el6.i686.rpm	01072691cf46dfdcc98d3f9e68000582fc7b689cefb5d041ba9dcbada7c1c2a6	ELBA-2019-3858	ol6_u10_i386_base
	samba-winbind-devel-3.6.23-51.0.1.el6.i686.rpm	8bc5debe6bcd8f120b003c2ea8a2afb5dc8b2217400949929d6bd551813d4333	ELBA-2019-3858	ol6_i386_latest
	samba-winbind-devel-3.6.23-51.0.1.el6.i686.rpm	8bc5debe6bcd8f120b003c2ea8a2afb5dc8b2217400949929d6bd551813d4333	ELBA-2019-3858	ol6_u10_i386_base
	samba-winbind-krb5-locator-3.6.23-51.0.1.el6.i686.rpm	5b55dc93816cbb5dd46df8771aceb7d9a63b4738f1848feed802e89fecf6615a	ELBA-2019-3858	ol6_i386_latest
	samba-winbind-krb5-locator-3.6.23-51.0.1.el6.i686.rpm	5b55dc93816cbb5dd46df8771aceb7d9a63b4738f1848feed802e89fecf6615a	ELBA-2019-3858	ol6_u10_i386_base

Oracle Linux 6 (x86_64)	samba-3.6.23-51.0.1.el6.src.rpm	23aa6bbd36f67f0c64e8c703c538e6c197d86ef02fc263669bb7b44dbf1de3e7	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-3.6.23-51.0.1.el6.src.rpm	23aa6bbd36f67f0c64e8c703c538e6c197d86ef02fc263669bb7b44dbf1de3e7	ELBA-2019-3858	ol6_x86_64_latest
	libsmbclient-3.6.23-51.0.1.el6.i686.rpm	9e5250d3ff74aa296ba76ebebe1d29d46558f1450388d06f6bab7f5e94cd8ca1	ELBA-2019-3858	ol6_u10_x86_64_base
	libsmbclient-3.6.23-51.0.1.el6.i686.rpm	9e5250d3ff74aa296ba76ebebe1d29d46558f1450388d06f6bab7f5e94cd8ca1	ELBA-2019-3858	ol6_x86_64_latest
	libsmbclient-3.6.23-51.0.1.el6.x86_64.rpm	dc2255072e5c83c4c82108a8c3a7004fea92b1431f454da0e9be69d586131ed9	ELBA-2019-3858	ol6_u10_x86_64_base
	libsmbclient-3.6.23-51.0.1.el6.x86_64.rpm	dc2255072e5c83c4c82108a8c3a7004fea92b1431f454da0e9be69d586131ed9	ELBA-2019-3858	ol6_x86_64_latest
	libsmbclient-devel-3.6.23-51.0.1.el6.i686.rpm	6502e0873247cab947ef16364482b0874ef5fc0a61134f11626667a3287936b4	ELBA-2019-3858	ol6_u10_x86_64_base
	libsmbclient-devel-3.6.23-51.0.1.el6.i686.rpm	6502e0873247cab947ef16364482b0874ef5fc0a61134f11626667a3287936b4	ELBA-2019-3858	ol6_x86_64_latest
	libsmbclient-devel-3.6.23-51.0.1.el6.x86_64.rpm	b5555e246478eca037af5345f029e90007d43ea74c2ec65dbcd0c8b594356c56	ELBA-2019-3858	ol6_u10_x86_64_base
	libsmbclient-devel-3.6.23-51.0.1.el6.x86_64.rpm	b5555e246478eca037af5345f029e90007d43ea74c2ec65dbcd0c8b594356c56	ELBA-2019-3858	ol6_x86_64_latest
	samba-3.6.23-51.0.1.el6.x86_64.rpm	fa4d884fd4cc887c8909fdcfcdaa9226ff54f6a70a2c7b8c8b1b67632f084a32	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-3.6.23-51.0.1.el6.x86_64.rpm	fa4d884fd4cc887c8909fdcfcdaa9226ff54f6a70a2c7b8c8b1b67632f084a32	ELBA-2019-3858	ol6_x86_64_latest
	samba-client-3.6.23-51.0.1.el6.x86_64.rpm	eb773a8a3094502362606e3a69f653f4ad71fbba20e59930319a83a377b40df1	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-client-3.6.23-51.0.1.el6.x86_64.rpm	eb773a8a3094502362606e3a69f653f4ad71fbba20e59930319a83a377b40df1	ELBA-2019-3858	ol6_x86_64_latest
	samba-common-3.6.23-51.0.1.el6.i686.rpm	0ad0a5248399f64acc0193938b4a6098471fb118e9bc0d9c982a98d5fd847e19	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-common-3.6.23-51.0.1.el6.i686.rpm	0ad0a5248399f64acc0193938b4a6098471fb118e9bc0d9c982a98d5fd847e19	ELBA-2019-3858	ol6_x86_64_latest
	samba-common-3.6.23-51.0.1.el6.x86_64.rpm	1b86da5f3327c824e59bf479df470ca5f6b56e4a95e1b0ad0a72ac81889704f7	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-common-3.6.23-51.0.1.el6.x86_64.rpm	1b86da5f3327c824e59bf479df470ca5f6b56e4a95e1b0ad0a72ac81889704f7	ELBA-2019-3858	ol6_x86_64_latest
	samba-doc-3.6.23-51.0.1.el6.x86_64.rpm	0e721acb3f560b16f38dab3c60c7825f46825bd2c76b40a1bab3293b7d738d01	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-doc-3.6.23-51.0.1.el6.x86_64.rpm	0e721acb3f560b16f38dab3c60c7825f46825bd2c76b40a1bab3293b7d738d01	ELBA-2019-3858	ol6_x86_64_latest
	samba-domainjoin-gui-3.6.23-51.0.1.el6.x86_64.rpm	552a8b6f5f0401ec8641a9560e916e6521469c2be6e340b1e025e598d8546937	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-domainjoin-gui-3.6.23-51.0.1.el6.x86_64.rpm	552a8b6f5f0401ec8641a9560e916e6521469c2be6e340b1e025e598d8546937	ELBA-2019-3858	ol6_x86_64_latest
	samba-glusterfs-3.6.23-51.0.1.el6.x86_64.rpm	9dd526093da082d3bc0cc1988e4798c6ea630ba4fa721c9ada2efb08e4dbfb58	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-glusterfs-3.6.23-51.0.1.el6.x86_64.rpm	9dd526093da082d3bc0cc1988e4798c6ea630ba4fa721c9ada2efb08e4dbfb58	ELBA-2019-3858	ol6_x86_64_latest
	samba-swat-3.6.23-51.0.1.el6.x86_64.rpm	fec787f7259c8f6667cf16f5952b5bc21b5568cf6a838595c6fe37ed62f405d9	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-swat-3.6.23-51.0.1.el6.x86_64.rpm	fec787f7259c8f6667cf16f5952b5bc21b5568cf6a838595c6fe37ed62f405d9	ELBA-2019-3858	ol6_x86_64_latest
	samba-winbind-3.6.23-51.0.1.el6.x86_64.rpm	972affebd570a069b96ccf89d684fbbfb2443acb9db8cc4be0bf39ded5fc469f	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-winbind-3.6.23-51.0.1.el6.x86_64.rpm	972affebd570a069b96ccf89d684fbbfb2443acb9db8cc4be0bf39ded5fc469f	ELBA-2019-3858	ol6_x86_64_latest
	samba-winbind-clients-3.6.23-51.0.1.el6.i686.rpm	01072691cf46dfdcc98d3f9e68000582fc7b689cefb5d041ba9dcbada7c1c2a6	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-winbind-clients-3.6.23-51.0.1.el6.i686.rpm	01072691cf46dfdcc98d3f9e68000582fc7b689cefb5d041ba9dcbada7c1c2a6	ELBA-2019-3858	ol6_x86_64_latest
	samba-winbind-clients-3.6.23-51.0.1.el6.x86_64.rpm	66b906f91a394be372db011b0f5a1df52b9ee47e84cdea8355a6ae5169d5f59f	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-winbind-clients-3.6.23-51.0.1.el6.x86_64.rpm	66b906f91a394be372db011b0f5a1df52b9ee47e84cdea8355a6ae5169d5f59f	ELBA-2019-3858	ol6_x86_64_latest
	samba-winbind-devel-3.6.23-51.0.1.el6.i686.rpm	8bc5debe6bcd8f120b003c2ea8a2afb5dc8b2217400949929d6bd551813d4333	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-winbind-devel-3.6.23-51.0.1.el6.i686.rpm	8bc5debe6bcd8f120b003c2ea8a2afb5dc8b2217400949929d6bd551813d4333	ELBA-2019-3858	ol6_x86_64_latest
	samba-winbind-devel-3.6.23-51.0.1.el6.x86_64.rpm	e61e12592005aedd302bcaa3ae2c76134579cfbb810d561c8eb7c40ef59e0d17	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-winbind-devel-3.6.23-51.0.1.el6.x86_64.rpm	e61e12592005aedd302bcaa3ae2c76134579cfbb810d561c8eb7c40ef59e0d17	ELBA-2019-3858	ol6_x86_64_latest
	samba-winbind-krb5-locator-3.6.23-51.0.1.el6.x86_64.rpm	1bf7aa6291533f48ee408867528acbe34e4bd7935bcf80677ddf57f86f2b0ef0	ELBA-2019-3858	ol6_u10_x86_64_base
	samba-winbind-krb5-locator-3.6.23-51.0.1.el6.x86_64.rpm	1bf7aa6291533f48ee408867528acbe34e4bd7935bcf80677ddf57f86f2b0ef0	ELBA-2019-3858	ol6_x86_64_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691