(RHSA-2023:4325) Moderate: samba security and bug fix update

2023-07-3108:22:24

access.redhat.com

samba

smb2

packet signing

security

bug fix

cifs

protocol

open-source

cve-2023-3347

bz#2223600

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

0.001 Low

EPSS

Percentile

38.1%

JSON

Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information.

Security Fix(es):

samba: SMB2 packet signing is not enforced when “server signing = required” is set (CVE-2023-3347)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

The trust relationship between this workstation and the primary domain failed (BZ#2223600)

OSVersionArchitecturePackageVersionFilename
RedHat9aarch64libsmbclient-debuginfo< 4.17.5-103.el9_2libsmbclient-debuginfo-4.17.5-103.el9_2.aarch64.rpm
RedHat9i686samba-debuginfo< 4.17.5-103.el9_2samba-debuginfo-4.17.5-103.el9_2.i686.rpm
RedHat9x86_64samba-ldb-ldap-modules< 4.17.5-103.el9_2samba-ldb-ldap-modules-4.17.5-103.el9_2.x86_64.rpm
RedHat9ppc64lesamba-dc-libs< 4.17.5-103.el9_2samba-dc-libs-4.17.5-103.el9_2.ppc64le.rpm
RedHat9i686samba-test-libs-debuginfo< 4.17.5-103.el9_2samba-test-libs-debuginfo-4.17.5-103.el9_2.i686.rpm
RedHat9aarch64samba-winbind-debuginfo< 4.17.5-103.el9_2samba-winbind-debuginfo-4.17.5-103.el9_2.aarch64.rpm
RedHat9s390xsamba-krb5-printing-debuginfo< 4.17.5-103.el9_2samba-krb5-printing-debuginfo-4.17.5-103.el9_2.s390x.rpm
RedHat9s390xsamba-krb5-printing< 4.17.5-103.el9_2samba-krb5-printing-4.17.5-103.el9_2.s390x.rpm
RedHat9s390xsamba-tools< 4.17.5-103.el9_2samba-tools-4.17.5-103.el9_2.s390x.rpm
RedHat9x86_64samba-common-tools-debuginfo< 4.17.5-103.el9_2samba-common-tools-debuginfo-4.17.5-103.el9_2.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	9	aarch64	libsmbclient-debuginfo	< 4.17.5-103.el9_2	libsmbclient-debuginfo-4.17.5-103.el9_2.aarch64.rpm
RedHat	9	i686	samba-debuginfo	< 4.17.5-103.el9_2	samba-debuginfo-4.17.5-103.el9_2.i686.rpm
RedHat	9	x86_64	samba-ldb-ldap-modules	< 4.17.5-103.el9_2	samba-ldb-ldap-modules-4.17.5-103.el9_2.x86_64.rpm
RedHat	9	ppc64le	samba-dc-libs	< 4.17.5-103.el9_2	samba-dc-libs-4.17.5-103.el9_2.ppc64le.rpm
RedHat	9	i686	samba-test-libs-debuginfo	< 4.17.5-103.el9_2	samba-test-libs-debuginfo-4.17.5-103.el9_2.i686.rpm
RedHat	9	aarch64	samba-winbind-debuginfo	< 4.17.5-103.el9_2	samba-winbind-debuginfo-4.17.5-103.el9_2.aarch64.rpm
RedHat	9	s390x	samba-krb5-printing-debuginfo	< 4.17.5-103.el9_2	samba-krb5-printing-debuginfo-4.17.5-103.el9_2.s390x.rpm
RedHat	9	s390x	samba-krb5-printing	< 4.17.5-103.el9_2	samba-krb5-printing-4.17.5-103.el9_2.s390x.rpm
RedHat	9	s390x	samba-tools	< 4.17.5-103.el9_2	samba-tools-4.17.5-103.el9_2.s390x.rpm
RedHat	9	x86_64	samba-common-tools-debuginfo	< 4.17.5-103.el9_2	samba-common-tools-debuginfo-4.17.5-103.el9_2.x86_64.rpm