Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits: 6621c6fb by Moritz Muehlenhoff at 2023-10-10T20:46:49+02:00 new samba issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,27 @@ +CVE-2023-42670 [Samba AD DC Busy RPC multiple listener DoS] + - samba 2:4.19.1+dfsg-1 + [bullseye] - samba <ignored> (Domain controller functionality is EOLed, see DSA DSA-5477-1) + [buster] - samba <ignored> (Domain controller functionality is EOLed, see DSA-5015-1) + NOTE: https://www.samba.org/samba/security/CVE-2023-42670.html +CVE-2023-42669 ["rpcecho" development server allows Denial of Service via sleep() call on AD DC] + - samba 2:4.19.1+dfsg-1 + [bullseye] - samba <ignored> (Domain controller functionality is EOLed, see DSA DSA-5477-1) + [buster] - samba <ignored> (Domain controller functionality is EOLed, see DSA-5015-1) + NOTE: https://www.samba.org/samba/security/CVE-2023-42669.html +CVE-2023-4091 [SMB clients can truncate files with read-only permissions] + - samba 2:4.19.1+dfsg-1 + NOTE: https://www.samba.org/samba/security/CVE-2023-4091.html + NOTE: In scope for continued Samba support +CVE-2023-4154 [Samba AD DC password exposure to privileged users and RODCs] + - samba 2:4.19.1+dfsg-1 + [bullseye] - samba <ignored> (Domain controller functionality is EOLed, see DSA DSA-5477-1) + [buster] - samba <ignored> (Domain controller functionality is EOLed, see DSA-5015-1) + NOTE: https://www.samba.org/samba/security/CVE-2023-4154.html +CVE-2023-3961 [smbd allows client access to unix domain sockets on the file system] + - samba 2:4.19.1+dfsg-1 + [buster] - samba <not-affected> (Vulnerable code not present) + NOTE: https://www.samba.org/samba/security/CVE-2023-3961.html + NOTE: In scope for continued Samba support CVE-2023-44487 - tomcat9 <unfixed> - tomcat10 <unfixed> ===================================== data/dsa-needed.txt ===================================== @@ -84,6 +84,8 @@ ruby-tzinfo/oldstable -- salt/oldstable -- +samba/stable (jmm) +-- samba/oldstable -- tiff (aron) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6621c6fb6ba067dae76af7d349d3c101ed3994d6 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6621c6fb6ba067dae76af7d349d3c101ed3994d6 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
