SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (File Transfer/Sharing)  >   Samba Vendors:   Samba.org
(CentOS Issues Fix) Samba Multiple Flaws Let Remote Users Hijack Connections and Remote Authenticated Users Obtain Potentially Sensitive Information
SecurityTracker Alert ID:  1039425
SecurityTracker URL:  http://securitytracker.com/id/1039425
CVE Reference:   CVE-2017-12150, CVE-2017-12163   (Links to External Site)
Date:  Sep 22 2017
Impact:   Disclosure of system information, Disclosure of user information, Modification of system information, Modification of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to versions 4.4.16, 4.5.14, and 4.6.8
Description:   Several vulnerabilities were reported in Samba. A remote user can access data on the target system. A remote user can modify data on the target system. A remote authenticated user can obtain potentially sensitive information on the target system.

The system fails to require SMB signing in certain cases. A remote user can conduct a man-in-the-middle attack to hijack client connections and obtain potentially sensitive information [CVE-2017-12150]. Versions 3.0.25 to 4.6.7 are affected.

The client software does not properly sign and encrypt DFS redirects when the max protocol for the original connection is set as 'SMB3' [CVE-2017-12151]. Versions 4.1.0 to 4.6.7 are affected.

A remote authenticated user can send specially crafted SMB1 data to cause portions of server memory contents to be written to a file on the target Samba share or to a shared printer [CVE-2017-12163].

Yihan Lian and Zhibin Hu, security researchers with Qihoo 360 GearTeam, and Stefan Metzmacher of SerNet (https://samba.plus) reported these vulnerabilities.

Impact:   A remote user can access and modify data communicated between the client and server.

A remote authenticated user can obtain potentially sensitive information from server memory on the target system.

Solution:   CentOS has issued a fix for CVE-2017-12150 and CVE-2017-12163.

i386:
b1c1343b5b8297260221db50803e504a8bf7bf51c0e86b03630a3261a5fd77f4 libsmbclient-3.6.23-45.el6_9.i686.rpm
f0db2b231f8eb9e55d939ec1dfd122c372789931f1fa23f8880e3cefcff6efd9 libsmbclient-devel-3.6.23-45.el6_9.i686.rpm
c33e7edaa1a360cabf8da6e7022f4fff6cbfa2d34c4534e479ac70bc3b4dac73 samba-3.6.23-45.el6_9.i686.rpm
10db2c2ba235934314ea41c2f3849790dd3f728473347cba91eac0359b799fc8 samba-client-3.6.23-45.el6_9.i686.rpm
4ea30d194fbeceb9f26430c5cd0bf3beba02138832cd57577e94bdf920c28f58 samba-common-3.6.23-45.el6_9.i686.rpm
2419782105b3a2b95ffa637ca55439af4d3a1a38b4fa1e9a91dac6ac59edcd2f samba-doc-3.6.23-45.el6_9.i686.rpm
bd9d7786488e59bc8840d60e474d0fd31c71bcbd92250f9e4054527cac949bbc samba-domainjoin-gui-3.6.23-45.el6_9.i686.rpm
783b87887f2175e0a79883977fa6a9f298a3462a43c7b6e2a756a7c5d62a86d2 samba-swat-3.6.23-45.el6_9.i686.rpm
95a93bcdeab8c2ffbf827572b87542134da2ebec271298535e6cac9db6c03d3c samba-winbind-3.6.23-45.el6_9.i686.rpm
a838d461c4cefef8a7fd3dd9263d8b2aecd7caeb04101938f071241458d4e29d samba-winbind-clients-3.6.23-45.el6_9.i686.rpm
c406187e133ecbe7c9c2facc7007e252ce75a77e4e7899c0ffa3a652a40792a3 samba-winbind-devel-3.6.23-45.el6_9.i686.rpm
8418a6eb861cc6c83113096f194025283d6439df840f3cf97f6304abd2891152 samba-winbind-krb5-locator-3.6.23-45.el6_9.i686.rpm

x86_64:
b1c1343b5b8297260221db50803e504a8bf7bf51c0e86b03630a3261a5fd77f4 libsmbclient-3.6.23-45.el6_9.i686.rpm
fd61775d89552e96fd0a4b0b1db0fb13c3dd141d6c3cf27c07af91f08a54d21b libsmbclient-3.6.23-45.el6_9.x86_64.rpm
f0db2b231f8eb9e55d939ec1dfd122c372789931f1fa23f8880e3cefcff6efd9 libsmbclient-devel-3.6.23-45.el6_9.i686.rpm
d12e1e4b3508e9576a841ca2f14304aeb582f573443899933f0f6c1c3d38bfb8 libsmbclient-devel-3.6.23-45.el6_9.x86_64.rpm
f16bfd04dc7790ab1da4525766c986a10cc3bd78494942f967c476778de43509 samba-3.6.23-45.el6_9.x86_64.rpm
3c4ef5f4e1cec473e34715d0755c0a9e890a318c41c1e9ad79151c423f7749ef samba-client-3.6.23-45.el6_9.x86_64.rpm
4ea30d194fbeceb9f26430c5cd0bf3beba02138832cd57577e94bdf920c28f58 samba-common-3.6.23-45.el6_9.i686.rpm
b42b1c404939437668ccf4047696fa49cd9acbf1433286a8d1e0b32b0a37daae samba-common-3.6.23-45.el6_9.x86_64.rpm
8472bdcff49c0967677fc0afed657e85a641107bd9f75412a8a9878c3a8c2dbb samba-doc-3.6.23-45.el6_9.x86_64.rpm
ded2271e9b1fc9d8434eee31749c8743230133842e4c5c2eacc8e9f5b4f5b224 samba-domainjoin-gui-3.6.23-45.el6_9.x86_64.rpm
e74f99a660c8522f77b6ca267cdd9561c69d78f026d1e3c1acaf6adff012a511 samba-glusterfs-3.6.23-45.el6_9.x86_64.rpm
3904b58c0ec38f3a94277b4da0c44898a889e7c1b630fea9e1f14c159d1e55bd samba-swat-3.6.23-45.el6_9.x86_64.rpm
e6dc02606ee66e216b43fdcdd90ee2e42bb98e9355d9c3e25124c9e2c98dd456 samba-winbind-3.6.23-45.el6_9.x86_64.rpm
a838d461c4cefef8a7fd3dd9263d8b2aecd7caeb04101938f071241458d4e29d samba-winbind-clients-3.6.23-45.el6_9.i686.rpm
a463d9a6c636a16d20e36a3e0ab6cb356bf06e3e4efe0534fda012381155c525 samba-winbind-clients-3.6.23-45.el6_9.x86_64.rpm
c406187e133ecbe7c9c2facc7007e252ce75a77e4e7899c0ffa3a652a40792a3 samba-winbind-devel-3.6.23-45.el6_9.i686.rpm
dc4cc9785f841e8bdf6367b9f9076716176c7c87ca21bee04145444ea048f784 samba-winbind-devel-3.6.23-45.el6_9.x86_64.rpm
cf7b7b7b956a39bc4cb81eacd072386e07be62f9792e3bfdb26c5026af29b546 samba-winbind-krb5-locator-3.6.23-45.el6_9.x86_64.rpm

Source:
166b1d59c045f75c083b14bd5ba0c3d64d63eee9b1902bfaafb1dca6f78ae06b samba-3.6.23-45.el6_9.src.rpm

Cause:   Access control error, Authentication error
Underlying OS:  Linux (CentOS)
Underlying OS Comments:  6

Message History:   This archive entry is a follow-up to the message listed below.
Sep 21 2017 Samba Multiple Flaws Let Remote Users Hijack Connections and Remote Authenticated Users Obtain Potentially Sensitive Information



 Source Message Contents

Subject:  [CentOS-announce] CESA-2017:2789 Moderate CentOS 6 samba Security Update


CentOS Errata and Security Advisory 2017:2789 Moderate

Upstream details at : https://access.redhat.com/errata/RHSA-2017:2789

The following updated files have been uploaded and are currently 
syncing to the mirrors: ( sha256sum Filename ) 

i386:
b1c1343b5b8297260221db50803e504a8bf7bf51c0e86b03630a3261a5fd77f4  libsmbclient-3.6.23-45.el6_9.i686.rpm
f0db2b231f8eb9e55d939ec1dfd122c372789931f1fa23f8880e3cefcff6efd9  libsmbclient-devel-3.6.23-45.el6_9.i686.rpm
c33e7edaa1a360cabf8da6e7022f4fff6cbfa2d34c4534e479ac70bc3b4dac73  samba-3.6.23-45.el6_9.i686.rpm
10db2c2ba235934314ea41c2f3849790dd3f728473347cba91eac0359b799fc8  samba-client-3.6.23-45.el6_9.i686.rpm
4ea30d194fbeceb9f26430c5cd0bf3beba02138832cd57577e94bdf920c28f58  samba-common-3.6.23-45.el6_9.i686.rpm
2419782105b3a2b95ffa637ca55439af4d3a1a38b4fa1e9a91dac6ac59edcd2f  samba-doc-3.6.23-45.el6_9.i686.rpm
bd9d7786488e59bc8840d60e474d0fd31c71bcbd92250f9e4054527cac949bbc  samba-domainjoin-gui-3.6.23-45.el6_9.i686.rpm
783b87887f2175e0a79883977fa6a9f298a3462a43c7b6e2a756a7c5d62a86d2  samba-swat-3.6.23-45.el6_9.i686.rpm
95a93bcdeab8c2ffbf827572b87542134da2ebec271298535e6cac9db6c03d3c  samba-winbind-3.6.23-45.el6_9.i686.rpm
a838d461c4cefef8a7fd3dd9263d8b2aecd7caeb04101938f071241458d4e29d  samba-winbind-clients-3.6.23-45.el6_9.i686.rpm
c406187e133ecbe7c9c2facc7007e252ce75a77e4e7899c0ffa3a652a40792a3  samba-winbind-devel-3.6.23-45.el6_9.i686.rpm
8418a6eb861cc6c83113096f194025283d6439df840f3cf97f6304abd2891152  samba-winbind-krb5-locator-3.6.23-45.el6_9.i686.rpm

x86_64:
b1c1343b5b8297260221db50803e504a8bf7bf51c0e86b03630a3261a5fd77f4  libsmbclient-3.6.23-45.el6_9.i686.rpm
fd61775d89552e96fd0a4b0b1db0fb13c3dd141d6c3cf27c07af91f08a54d21b  libsmbclient-3.6.23-45.el6_9.x86_64.rpm
f0db2b231f8eb9e55d939ec1dfd122c372789931f1fa23f8880e3cefcff6efd9  libsmbclient-devel-3.6.23-45.el6_9.i686.rpm
d12e1e4b3508e9576a841ca2f14304aeb582f573443899933f0f6c1c3d38bfb8  libsmbclient-devel-3.6.23-45.el6_9.x86_64.rpm
f16bfd04dc7790ab1da4525766c986a10cc3bd78494942f967c476778de43509  samba-3.6.23-45.el6_9.x86_64.rpm
3c4ef5f4e1cec473e34715d0755c0a9e890a318c41c1e9ad79151c423f7749ef  samba-client-3.6.23-45.el6_9.x86_64.rpm
4ea30d194fbeceb9f26430c5cd0bf3beba02138832cd57577e94bdf920c28f58  samba-common-3.6.23-45.el6_9.i686.rpm
b42b1c404939437668ccf4047696fa49cd9acbf1433286a8d1e0b32b0a37daae  samba-common-3.6.23-45.el6_9.x86_64.rpm
8472bdcff49c0967677fc0afed657e85a641107bd9f75412a8a9878c3a8c2dbb  samba-doc-3.6.23-45.el6_9.x86_64.rpm
ded2271e9b1fc9d8434eee31749c8743230133842e4c5c2eacc8e9f5b4f5b224  samba-domainjoin-gui-3.6.23-45.el6_9.x86_64.rpm
e74f99a660c8522f77b6ca267cdd9561c69d78f026d1e3c1acaf6adff012a511  samba-glusterfs-3.6.23-45.el6_9.x86_64.rpm
3904b58c0ec38f3a94277b4da0c44898a889e7c1b630fea9e1f14c159d1e55bd  samba-swat-3.6.23-45.el6_9.x86_64.rpm
e6dc02606ee66e216b43fdcdd90ee2e42bb98e9355d9c3e25124c9e2c98dd456  samba-winbind-3.6.23-45.el6_9.x86_64.rpm
a838d461c4cefef8a7fd3dd9263d8b2aecd7caeb04101938f071241458d4e29d  samba-winbind-clients-3.6.23-45.el6_9.i686.rpm
a463d9a6c636a16d20e36a3e0ab6cb356bf06e3e4efe0534fda012381155c525  samba-winbind-clients-3.6.23-45.el6_9.x86_64.rpm
c406187e133ecbe7c9c2facc7007e252ce75a77e4e7899c0ffa3a652a40792a3  samba-winbind-devel-3.6.23-45.el6_9.i686.rpm
dc4cc9785f841e8bdf6367b9f9076716176c7c87ca21bee04145444ea048f784  samba-winbind-devel-3.6.23-45.el6_9.x86_64.rpm
cf7b7b7b956a39bc4cb81eacd072386e07be62f9792e3bfdb26c5026af29b546  samba-winbind-krb5-locator-3.6.23-45.el6_9.x86_64.rpm

Source:
166b1d59c045f75c083b14bd5ba0c3d64d63eee9b1902bfaafb1dca6f78ae06b  samba-3.6.23-45.el6_9.src.rpm



-- 
Johnny Hughes
CentOS Project { http://www.centos.org/ }
irc: hughesjr, #centos@irc.freenode.net
Twitter: @JohnnyCentOS

_______________________________________________
CentOS-announce mailing list
CentOS-announce@centos.org
https://lists.centos.org/mailman/listinfo/centos-announce
 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC