Lucene search

RedHatRHSA-2021:2313

HistoryJun 08, 2021 - 5:58 p.m.

(RHSA-2021:2313) Moderate: samba security and bug fix update

2021-06-0817:58:49

access.redhat.com

samba

smb protocol

cifs

security fix

file sharing

printing fix

CVSS2

4.9

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:P/A:N

CVSS3

6.8

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

EPSS

0.004

Percentile

74.4%

JSON

Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information.

Security Fix(es):

samba: Negative idmap cache entries can cause incorrect group entries in the Samba file server process token (CVE-2021-20254)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

smb.service stops when samba rpms are updated (BZ#1930747)
samba printing dumps core (BZ#1937867)

OSVersionArchitecturePackageVersionFilename
RedHat7ppcsamba-client-libs< 4.10.16-15.el7_9samba-client-libs-4.10.16-15.el7_9.ppc.rpm
RedHat7s390samba-python< 4.10.16-15.el7_9samba-python-4.10.16-15.el7_9.s390.rpm
RedHat7x86_64samba-python< 4.10.16-15.el7_9samba-python-4.10.16-15.el7_9.x86_64.rpm
RedHat7x86_64samba-common-tools< 4.10.16-15.el7_9samba-common-tools-4.10.16-15.el7_9.x86_64.rpm
RedHat7ppc64samba-winbind-krb5-locator< 4.10.16-15.el7_9samba-winbind-krb5-locator-4.10.16-15.el7_9.ppc64.rpm
RedHat7ppc64samba-libs< 4.10.16-15.el7_9samba-libs-4.10.16-15.el7_9.ppc64.rpm
RedHat7ppc64samba-test-libs< 4.10.16-15.el7_9samba-test-libs-4.10.16-15.el7_9.ppc64.rpm
RedHat7x86_64samba-debuginfo< 4.10.16-15.el7_9samba-debuginfo-4.10.16-15.el7_9.x86_64.rpm
RedHat7ppc64samba< 4.10.16-15.el7_9samba-4.10.16-15.el7_9.ppc64.rpm
RedHat7s390xsamba-python-test< 4.10.16-15.el7_9samba-python-test-4.10.16-15.el7_9.s390x.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	ppc	samba-client-libs	< 4.10.16-15.el7_9	samba-client-libs-4.10.16-15.el7_9.ppc.rpm
RedHat	7	s390	samba-python	< 4.10.16-15.el7_9	samba-python-4.10.16-15.el7_9.s390.rpm
RedHat	7	x86_64	samba-python	< 4.10.16-15.el7_9	samba-python-4.10.16-15.el7_9.x86_64.rpm
RedHat	7	x86_64	samba-common-tools	< 4.10.16-15.el7_9	samba-common-tools-4.10.16-15.el7_9.x86_64.rpm
RedHat	7	ppc64	samba-winbind-krb5-locator	< 4.10.16-15.el7_9	samba-winbind-krb5-locator-4.10.16-15.el7_9.ppc64.rpm
RedHat	7	ppc64	samba-libs	< 4.10.16-15.el7_9	samba-libs-4.10.16-15.el7_9.ppc64.rpm
RedHat	7	ppc64	samba-test-libs	< 4.10.16-15.el7_9	samba-test-libs-4.10.16-15.el7_9.ppc64.rpm
RedHat	7	x86_64	samba-debuginfo	< 4.10.16-15.el7_9	samba-debuginfo-4.10.16-15.el7_9.x86_64.rpm
RedHat	7	ppc64	samba	< 4.10.16-15.el7_9	samba-4.10.16-15.el7_9.ppc64.rpm
RedHat	7	s390x	samba-python-test	< 4.10.16-15.el7_9	samba-python-test-4.10.16-15.el7_9.s390x.rpm