Advisories » MGASA-2019-0011

Updated ldb, talloc, and samba packages fix security vulnerabilities

Publication date: 05 Jan 2019
Modification date: 05 Jan 2019
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-14629 , CVE-2018-16841 , CVE-2018-16851

Description

Florian Stuelpner discovered that Samba is vulnerable to infinite query
recursion caused by CNAME loops, resulting in denial of service
(CVE-2018-14629).

Alex MacCuish discovered that a user with a valid certificate or smart
card can crash the Samba AD DC's KDC when configured to accept
smart-card authentication (CVE-2018-16841).

Garming Sam of the Samba Team and Catalyst discovered a NULL pointer
dereference vulnerability in the Samba AD DC LDAP server allowing a user
able to read more than 256MB of LDAP entries to crash the Samba AD DC's
LDAP server (CVE-2018-16851).

Samba has been updated to version 4.7.12 of the 4.7.x stable branch, and
the tdb, talloc, tevent, ldb, and cmocka packages have also been updated.

The sssd package has also been rebuilt against the updated ldb.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=24061
• https://www.samba.org/samba/security/CVE-2018-14629.html
• https://www.samba.org/samba/security/CVE-2018-16841.html
• https://www.samba.org/samba/security/CVE-2018-16851.html
• https://www.samba.org/samba/history/samba-4.7.0.html
• https://www.samba.org/samba/history/samba-4.7.1.html
• https://www.samba.org/samba/history/samba-4.7.2.html
• https://www.samba.org/samba/history/samba-4.7.3.html
• https://www.samba.org/samba/history/samba-4.7.4.html
• https://www.samba.org/samba/history/samba-4.7.5.html
• https://www.samba.org/samba/history/samba-4.7.6.html
• https://www.samba.org/samba/history/samba-4.7.7.html
• https://www.samba.org/samba/history/samba-4.7.8.html
• https://www.samba.org/samba/history/samba-4.7.9.html
• https://www.samba.org/samba/history/samba-4.7.10.html
• https://www.samba.org/samba/history/samba-4.7.11.html
• https://www.samba.org/samba/history/samba-4.7.12.html
• https://www.debian.org/security/2018/dsa-4345
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14629
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16841
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16851

SRPMS

6/core

• tdb-1.3.14-1.mga6
• talloc-2.1.11-1.1.mga6
• tevent-0.9.36-1.1.mga6
• ldb-1.2.3-1.mga6
• cmocka-1.1.3-1.mga6
• sssd-1.13.4-9.3.mga6
• samba-4.7.12-1.1.mga6