SUSE update for samba



Published: 2023-01-24
Risk High
Patch available YES
Number of vulnerabilities 5
CVE-ID CVE-2020-14323
CVE-2021-20251
CVE-2022-32742
CVE-2022-37966
CVE-2022-38023
CWE-ID CWE-476
CWE-362
CWE-401
CWE-264
CWE-254
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe 		SUSE Linux Enterprise Server
Operating systems & Components / Operating system

samba-winbind-debuginfo
Operating systems & Components / Operating system package or component

samba-winbind-debuginfo-32bit
Operating systems & Components / Operating system package or component

samba-winbind
Operating systems & Components / Operating system package or component

samba-winbind-32bit
Operating systems & Components / Operating system package or component

samba-libs-debuginfo
Operating systems & Components / Operating system package or component

samba-libs-debuginfo-32bit
Operating systems & Components / Operating system package or component

samba-libs
Operating systems & Components / Operating system package or component

samba-libs-32bit
Operating systems & Components / Operating system package or component

samba-debugsource
Operating systems & Components / Operating system package or component

samba-debuginfo
Operating systems & Components / Operating system package or component

samba-client-debuginfo
Operating systems & Components / Operating system package or component

samba-client-debuginfo-32bit
Operating systems & Components / Operating system package or component

samba-client
Operating systems & Components / Operating system package or component

samba-client-32bit
Operating systems & Components / Operating system package or component

samba
Operating systems & Components / Operating system package or component

libwbclient0-debuginfo
Operating systems & Components / Operating system package or component

libwbclient0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libwbclient0
Operating systems & Components / Operating system package or component

libwbclient0-32bit
Operating systems & Components / Operating system package or component

libtevent-util0-debuginfo
Operating systems & Components / Operating system package or component

libtevent-util0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libtevent-util0
Operating systems & Components / Operating system package or component

libtevent-util0-32bit
Operating systems & Components / Operating system package or component

libsmbldap0-debuginfo
Operating systems & Components / Operating system package or component

libsmbldap0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libsmbldap0
Operating systems & Components / Operating system package or component

libsmbldap0-32bit
Operating systems & Components / Operating system package or component

libsmbconf0-debuginfo
Operating systems & Components / Operating system package or component

libsmbconf0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libsmbconf0
Operating systems & Components / Operating system package or component

libsmbconf0-32bit
Operating systems & Components / Operating system package or component

libsmbclient0-debuginfo
Operating systems & Components / Operating system package or component

libsmbclient0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libsmbclient0
Operating systems & Components / Operating system package or component

libsmbclient0-32bit
Operating systems & Components / Operating system package or component

libsamdb0-debuginfo
Operating systems & Components / Operating system package or component

libsamdb0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libsamdb0
Operating systems & Components / Operating system package or component

libsamdb0-32bit
Operating systems & Components / Operating system package or component

libsamba-util0-debuginfo
Operating systems & Components / Operating system package or component

libsamba-util0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libsamba-util0
Operating systems & Components / Operating system package or component

libsamba-util0-32bit
Operating systems & Components / Operating system package or component

libsamba-passdb0-debuginfo
Operating systems & Components / Operating system package or component

libsamba-passdb0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libsamba-passdb0
Operating systems & Components / Operating system package or component

libsamba-passdb0-32bit
Operating systems & Components / Operating system package or component

libsamba-hostconfig0-debuginfo
Operating systems & Components / Operating system package or component

libsamba-hostconfig0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libsamba-hostconfig0
Operating systems & Components / Operating system package or component

libsamba-hostconfig0-32bit
Operating systems & Components / Operating system package or component

libsamba-errors0-debuginfo
Operating systems & Components / Operating system package or component

libsamba-errors0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libsamba-errors0
Operating systems & Components / Operating system package or component

libsamba-errors0-32bit
Operating systems & Components / Operating system package or component

libsamba-credentials0-debuginfo
Operating systems & Components / Operating system package or component

libsamba-credentials0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libsamba-credentials0
Operating systems & Components / Operating system package or component

libsamba-credentials0-32bit
Operating systems & Components / Operating system package or component

libnetapi0-debuginfo
Operating systems & Components / Operating system package or component

libnetapi0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libnetapi0
Operating systems & Components / Operating system package or component

libnetapi0-32bit
Operating systems & Components / Operating system package or component

libndr0-debuginfo
Operating systems & Components / Operating system package or component

libndr0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libndr0
Operating systems & Components / Operating system package or component

libndr0-32bit
Operating systems & Components / Operating system package or component

libndr-standard0-debuginfo
Operating systems & Components / Operating system package or component

libndr-standard0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libndr-standard0
Operating systems & Components / Operating system package or component

libndr-standard0-32bit
Operating systems & Components / Operating system package or component

libndr-nbt0-debuginfo
Operating systems & Components / Operating system package or component

libndr-nbt0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libndr-nbt0
Operating systems & Components / Operating system package or component

libndr-nbt0-32bit
Operating systems & Components / Operating system package or component

libndr-krb5pac0-debuginfo
Operating systems & Components / Operating system package or component

libndr-krb5pac0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libndr-krb5pac0
Operating systems & Components / Operating system package or component

libndr-krb5pac0-32bit
Operating systems & Components / Operating system package or component

libdcerpc0-debuginfo
Operating systems & Components / Operating system package or component

libdcerpc0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libdcerpc0
Operating systems & Components / Operating system package or component

libdcerpc0-32bit
Operating systems & Components / Operating system package or component

libdcerpc-binding0-debuginfo
Operating systems & Components / Operating system package or component

libdcerpc-binding0-debuginfo-32bit
Operating systems & Components / Operating system package or component

libdcerpc-binding0
Operating systems & Components / Operating system package or component

libdcerpc-binding0-32bit
Operating systems & Components / Operating system package or component

samba-doc
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains information about 5 vulnerabilities.

1) NULL pointer dereference

EUVDB-ID: #VU47991

Risk: Medium

CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-14323

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a remote user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error when processing requests in winbind in Samba. A remote user can send specially crafted request to winbind daemon, trigger a NULL pointer dereference error and crash it.

Mitigation

Update the affected package samba to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server: 12-SP2-BCL

samba-winbind-debuginfo: before 4.4.2-38.55.1

samba-winbind-debuginfo-32bit: before 4.4.2-38.55.1

samba-winbind: before 4.4.2-38.55.1

samba-winbind-32bit: before 4.4.2-38.55.1

samba-libs-debuginfo: before 4.4.2-38.55.1

samba-libs-debuginfo-32bit: before 4.4.2-38.55.1

samba-libs: before 4.4.2-38.55.1

samba-libs-32bit: before 4.4.2-38.55.1

samba-debugsource: before 4.4.2-38.55.1

samba-debuginfo: before 4.4.2-38.55.1

samba-client-debuginfo: before 4.4.2-38.55.1

samba-client-debuginfo-32bit: before 4.4.2-38.55.1

samba-client: before 4.4.2-38.55.1

samba-client-32bit: before 4.4.2-38.55.1

samba: before 4.4.2-38.55.1

libwbclient0-debuginfo: before 4.4.2-38.55.1

libwbclient0-debuginfo-32bit: before 4.4.2-38.55.1

libwbclient0: before 4.4.2-38.55.1

libwbclient0-32bit: before 4.4.2-38.55.1

libtevent-util0-debuginfo: before 4.4.2-38.55.1

libtevent-util0-debuginfo-32bit: before 4.4.2-38.55.1

libtevent-util0: before 4.4.2-38.55.1

libtevent-util0-32bit: before 4.4.2-38.55.1

libsmbldap0-debuginfo: before 4.4.2-38.55.1

libsmbldap0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbldap0: before 4.4.2-38.55.1

libsmbldap0-32bit: before 4.4.2-38.55.1

libsmbconf0-debuginfo: before 4.4.2-38.55.1

libsmbconf0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbconf0: before 4.4.2-38.55.1

libsmbconf0-32bit: before 4.4.2-38.55.1

libsmbclient0-debuginfo: before 4.4.2-38.55.1

libsmbclient0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbclient0: before 4.4.2-38.55.1

libsmbclient0-32bit: before 4.4.2-38.55.1

libsamdb0-debuginfo: before 4.4.2-38.55.1

libsamdb0-debuginfo-32bit: before 4.4.2-38.55.1

libsamdb0: before 4.4.2-38.55.1

libsamdb0-32bit: before 4.4.2-38.55.1

libsamba-util0-debuginfo: before 4.4.2-38.55.1

libsamba-util0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-util0: before 4.4.2-38.55.1

libsamba-util0-32bit: before 4.4.2-38.55.1

libsamba-passdb0-debuginfo: before 4.4.2-38.55.1

libsamba-passdb0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-passdb0: before 4.4.2-38.55.1

libsamba-passdb0-32bit: before 4.4.2-38.55.1

libsamba-hostconfig0-debuginfo: before 4.4.2-38.55.1

libsamba-hostconfig0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-hostconfig0: before 4.4.2-38.55.1

libsamba-hostconfig0-32bit: before 4.4.2-38.55.1

libsamba-errors0-debuginfo: before 4.4.2-38.55.1

libsamba-errors0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-errors0: before 4.4.2-38.55.1

libsamba-errors0-32bit: before 4.4.2-38.55.1

libsamba-credentials0-debuginfo: before 4.4.2-38.55.1

libsamba-credentials0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-credentials0: before 4.4.2-38.55.1

libsamba-credentials0-32bit: before 4.4.2-38.55.1

libnetapi0-debuginfo: before 4.4.2-38.55.1

libnetapi0-debuginfo-32bit: before 4.4.2-38.55.1

libnetapi0: before 4.4.2-38.55.1

libnetapi0-32bit: before 4.4.2-38.55.1

libndr0-debuginfo: before 4.4.2-38.55.1

libndr0-debuginfo-32bit: before 4.4.2-38.55.1

libndr0: before 4.4.2-38.55.1

libndr0-32bit: before 4.4.2-38.55.1

libndr-standard0-debuginfo: before 4.4.2-38.55.1

libndr-standard0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-standard0: before 4.4.2-38.55.1

libndr-standard0-32bit: before 4.4.2-38.55.1

libndr-nbt0-debuginfo: before 4.4.2-38.55.1

libndr-nbt0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-nbt0: before 4.4.2-38.55.1

libndr-nbt0-32bit: before 4.4.2-38.55.1

libndr-krb5pac0-debuginfo: before 4.4.2-38.55.1

libndr-krb5pac0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-krb5pac0: before 4.4.2-38.55.1

libndr-krb5pac0-32bit: before 4.4.2-38.55.1

libdcerpc0-debuginfo: before 4.4.2-38.55.1

libdcerpc0-debuginfo-32bit: before 4.4.2-38.55.1

libdcerpc0: before 4.4.2-38.55.1

libdcerpc0-32bit: before 4.4.2-38.55.1

libdcerpc-binding0-debuginfo: before 4.4.2-38.55.1

libdcerpc-binding0-debuginfo-32bit: before 4.4.2-38.55.1

libdcerpc-binding0: before 4.4.2-38.55.1

libdcerpc-binding0-32bit: before 4.4.2-38.55.1

samba-doc: before 4.4.2-38.55.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20230122-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Race condition

EUVDB-ID: #VU71486

Risk: Low

CVSSv3.1: 3.7 [CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-20251

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a brute-force attack.

The vulnerability exists due to a race condition in Samba when incrementing bad password attempts. Each connection to Samba gets a separate process, and each process loads, increments, and saves the bad password count without any coordination. A remote attacker can perform a brute-force attack using multiple threats and bypass imposed limits on the number of allowed incorrect passwords.

Mitigation

Update the affected package samba to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server: 12-SP2-BCL

samba-winbind-debuginfo: before 4.4.2-38.55.1

samba-winbind-debuginfo-32bit: before 4.4.2-38.55.1

samba-winbind: before 4.4.2-38.55.1

samba-winbind-32bit: before 4.4.2-38.55.1

samba-libs-debuginfo: before 4.4.2-38.55.1

samba-libs-debuginfo-32bit: before 4.4.2-38.55.1

samba-libs: before 4.4.2-38.55.1

samba-libs-32bit: before 4.4.2-38.55.1

samba-debugsource: before 4.4.2-38.55.1

samba-debuginfo: before 4.4.2-38.55.1

samba-client-debuginfo: before 4.4.2-38.55.1

samba-client-debuginfo-32bit: before 4.4.2-38.55.1

samba-client: before 4.4.2-38.55.1

samba-client-32bit: before 4.4.2-38.55.1

samba: before 4.4.2-38.55.1

libwbclient0-debuginfo: before 4.4.2-38.55.1

libwbclient0-debuginfo-32bit: before 4.4.2-38.55.1

libwbclient0: before 4.4.2-38.55.1

libwbclient0-32bit: before 4.4.2-38.55.1

libtevent-util0-debuginfo: before 4.4.2-38.55.1

libtevent-util0-debuginfo-32bit: before 4.4.2-38.55.1

libtevent-util0: before 4.4.2-38.55.1

libtevent-util0-32bit: before 4.4.2-38.55.1

libsmbldap0-debuginfo: before 4.4.2-38.55.1

libsmbldap0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbldap0: before 4.4.2-38.55.1

libsmbldap0-32bit: before 4.4.2-38.55.1

libsmbconf0-debuginfo: before 4.4.2-38.55.1

libsmbconf0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbconf0: before 4.4.2-38.55.1

libsmbconf0-32bit: before 4.4.2-38.55.1

libsmbclient0-debuginfo: before 4.4.2-38.55.1

libsmbclient0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbclient0: before 4.4.2-38.55.1

libsmbclient0-32bit: before 4.4.2-38.55.1

libsamdb0-debuginfo: before 4.4.2-38.55.1

libsamdb0-debuginfo-32bit: before 4.4.2-38.55.1

libsamdb0: before 4.4.2-38.55.1

libsamdb0-32bit: before 4.4.2-38.55.1

libsamba-util0-debuginfo: before 4.4.2-38.55.1

libsamba-util0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-util0: before 4.4.2-38.55.1

libsamba-util0-32bit: before 4.4.2-38.55.1

libsamba-passdb0-debuginfo: before 4.4.2-38.55.1

libsamba-passdb0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-passdb0: before 4.4.2-38.55.1

libsamba-passdb0-32bit: before 4.4.2-38.55.1

libsamba-hostconfig0-debuginfo: before 4.4.2-38.55.1

libsamba-hostconfig0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-hostconfig0: before 4.4.2-38.55.1

libsamba-hostconfig0-32bit: before 4.4.2-38.55.1

libsamba-errors0-debuginfo: before 4.4.2-38.55.1

libsamba-errors0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-errors0: before 4.4.2-38.55.1

libsamba-errors0-32bit: before 4.4.2-38.55.1

libsamba-credentials0-debuginfo: before 4.4.2-38.55.1

libsamba-credentials0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-credentials0: before 4.4.2-38.55.1

libsamba-credentials0-32bit: before 4.4.2-38.55.1

libnetapi0-debuginfo: before 4.4.2-38.55.1

libnetapi0-debuginfo-32bit: before 4.4.2-38.55.1

libnetapi0: before 4.4.2-38.55.1

libnetapi0-32bit: before 4.4.2-38.55.1

libndr0-debuginfo: before 4.4.2-38.55.1

libndr0-debuginfo-32bit: before 4.4.2-38.55.1

libndr0: before 4.4.2-38.55.1

libndr0-32bit: before 4.4.2-38.55.1

libndr-standard0-debuginfo: before 4.4.2-38.55.1

libndr-standard0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-standard0: before 4.4.2-38.55.1

libndr-standard0-32bit: before 4.4.2-38.55.1

libndr-nbt0-debuginfo: before 4.4.2-38.55.1

libndr-nbt0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-nbt0: before 4.4.2-38.55.1

libndr-nbt0-32bit: before 4.4.2-38.55.1

libndr-krb5pac0-debuginfo: before 4.4.2-38.55.1

libndr-krb5pac0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-krb5pac0: before 4.4.2-38.55.1

libndr-krb5pac0-32bit: before 4.4.2-38.55.1

libdcerpc0-debuginfo: before 4.4.2-38.55.1

libdcerpc0-debuginfo-32bit: before 4.4.2-38.55.1

libdcerpc0: before 4.4.2-38.55.1

libdcerpc0-32bit: before 4.4.2-38.55.1

libdcerpc-binding0-debuginfo: before 4.4.2-38.55.1

libdcerpc-binding0-debuginfo-32bit: before 4.4.2-38.55.1

libdcerpc-binding0: before 4.4.2-38.55.1

libdcerpc-binding0-32bit: before 4.4.2-38.55.1

samba-doc: before 4.4.2-38.55.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20230122-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Memory leak

EUVDB-ID: #VU65824

Risk: Low

CVSSv3.1: 3.6 [CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-32742

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a remote user to gain access to sensitive information.

The vulnerability exists due memory leak when handling SMB1 requests. A remote user with ability to write data to a file share can force the application to leak memory and gain access to potentially sensitive information.

Mitigation

Update the affected package samba to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server: 12-SP2-BCL

samba-winbind-debuginfo: before 4.4.2-38.55.1

samba-winbind-debuginfo-32bit: before 4.4.2-38.55.1

samba-winbind: before 4.4.2-38.55.1

samba-winbind-32bit: before 4.4.2-38.55.1

samba-libs-debuginfo: before 4.4.2-38.55.1

samba-libs-debuginfo-32bit: before 4.4.2-38.55.1

samba-libs: before 4.4.2-38.55.1

samba-libs-32bit: before 4.4.2-38.55.1

samba-debugsource: before 4.4.2-38.55.1

samba-debuginfo: before 4.4.2-38.55.1

samba-client-debuginfo: before 4.4.2-38.55.1

samba-client-debuginfo-32bit: before 4.4.2-38.55.1

samba-client: before 4.4.2-38.55.1

samba-client-32bit: before 4.4.2-38.55.1

samba: before 4.4.2-38.55.1

libwbclient0-debuginfo: before 4.4.2-38.55.1

libwbclient0-debuginfo-32bit: before 4.4.2-38.55.1

libwbclient0: before 4.4.2-38.55.1

libwbclient0-32bit: before 4.4.2-38.55.1

libtevent-util0-debuginfo: before 4.4.2-38.55.1

libtevent-util0-debuginfo-32bit: before 4.4.2-38.55.1

libtevent-util0: before 4.4.2-38.55.1

libtevent-util0-32bit: before 4.4.2-38.55.1

libsmbldap0-debuginfo: before 4.4.2-38.55.1

libsmbldap0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbldap0: before 4.4.2-38.55.1

libsmbldap0-32bit: before 4.4.2-38.55.1

libsmbconf0-debuginfo: before 4.4.2-38.55.1

libsmbconf0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbconf0: before 4.4.2-38.55.1

libsmbconf0-32bit: before 4.4.2-38.55.1

libsmbclient0-debuginfo: before 4.4.2-38.55.1

libsmbclient0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbclient0: before 4.4.2-38.55.1

libsmbclient0-32bit: before 4.4.2-38.55.1

libsamdb0-debuginfo: before 4.4.2-38.55.1

libsamdb0-debuginfo-32bit: before 4.4.2-38.55.1

libsamdb0: before 4.4.2-38.55.1

libsamdb0-32bit: before 4.4.2-38.55.1

libsamba-util0-debuginfo: before 4.4.2-38.55.1

libsamba-util0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-util0: before 4.4.2-38.55.1

libsamba-util0-32bit: before 4.4.2-38.55.1

libsamba-passdb0-debuginfo: before 4.4.2-38.55.1

libsamba-passdb0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-passdb0: before 4.4.2-38.55.1

libsamba-passdb0-32bit: before 4.4.2-38.55.1

libsamba-hostconfig0-debuginfo: before 4.4.2-38.55.1

libsamba-hostconfig0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-hostconfig0: before 4.4.2-38.55.1

libsamba-hostconfig0-32bit: before 4.4.2-38.55.1

libsamba-errors0-debuginfo: before 4.4.2-38.55.1

libsamba-errors0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-errors0: before 4.4.2-38.55.1

libsamba-errors0-32bit: before 4.4.2-38.55.1

libsamba-credentials0-debuginfo: before 4.4.2-38.55.1

libsamba-credentials0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-credentials0: before 4.4.2-38.55.1

libsamba-credentials0-32bit: before 4.4.2-38.55.1

libnetapi0-debuginfo: before 4.4.2-38.55.1

libnetapi0-debuginfo-32bit: before 4.4.2-38.55.1

libnetapi0: before 4.4.2-38.55.1

libnetapi0-32bit: before 4.4.2-38.55.1

libndr0-debuginfo: before 4.4.2-38.55.1

libndr0-debuginfo-32bit: before 4.4.2-38.55.1

libndr0: before 4.4.2-38.55.1

libndr0-32bit: before 4.4.2-38.55.1

libndr-standard0-debuginfo: before 4.4.2-38.55.1

libndr-standard0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-standard0: before 4.4.2-38.55.1

libndr-standard0-32bit: before 4.4.2-38.55.1

libndr-nbt0-debuginfo: before 4.4.2-38.55.1

libndr-nbt0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-nbt0: before 4.4.2-38.55.1

libndr-nbt0-32bit: before 4.4.2-38.55.1

libndr-krb5pac0-debuginfo: before 4.4.2-38.55.1

libndr-krb5pac0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-krb5pac0: before 4.4.2-38.55.1

libndr-krb5pac0-32bit: before 4.4.2-38.55.1

libdcerpc0-debuginfo: before 4.4.2-38.55.1

libdcerpc0-debuginfo-32bit: before 4.4.2-38.55.1

libdcerpc0: before 4.4.2-38.55.1

libdcerpc0-32bit: before 4.4.2-38.55.1

libdcerpc-binding0-debuginfo: before 4.4.2-38.55.1

libdcerpc-binding0-debuginfo-32bit: before 4.4.2-38.55.1

libdcerpc-binding0: before 4.4.2-38.55.1

libdcerpc-binding0-32bit: before 4.4.2-38.55.1

samba-doc: before 4.4.2-38.55.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20230122-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Permissions, Privileges, and Access Controls

EUVDB-ID: #VU69094

Risk: High

CVSSv3.1: 7.1 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-37966

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote attacker to escalate privileges on the system.

The vulnerability exists due to application does not properly impose security restrictions in Windows Kerberos RC4-HMAC. A remote attacker can conduct a man-in-middle (MiTM) attack, which leads to security restrictions bypass and privilege escalation.

Mitigation

Update the affected package samba to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server: 12-SP2-BCL

samba-winbind-debuginfo: before 4.4.2-38.55.1

samba-winbind-debuginfo-32bit: before 4.4.2-38.55.1

samba-winbind: before 4.4.2-38.55.1

samba-winbind-32bit: before 4.4.2-38.55.1

samba-libs-debuginfo: before 4.4.2-38.55.1

samba-libs-debuginfo-32bit: before 4.4.2-38.55.1

samba-libs: before 4.4.2-38.55.1

samba-libs-32bit: before 4.4.2-38.55.1

samba-debugsource: before 4.4.2-38.55.1

samba-debuginfo: before 4.4.2-38.55.1

samba-client-debuginfo: before 4.4.2-38.55.1

samba-client-debuginfo-32bit: before 4.4.2-38.55.1

samba-client: before 4.4.2-38.55.1

samba-client-32bit: before 4.4.2-38.55.1

samba: before 4.4.2-38.55.1

libwbclient0-debuginfo: before 4.4.2-38.55.1

libwbclient0-debuginfo-32bit: before 4.4.2-38.55.1

libwbclient0: before 4.4.2-38.55.1

libwbclient0-32bit: before 4.4.2-38.55.1

libtevent-util0-debuginfo: before 4.4.2-38.55.1

libtevent-util0-debuginfo-32bit: before 4.4.2-38.55.1

libtevent-util0: before 4.4.2-38.55.1

libtevent-util0-32bit: before 4.4.2-38.55.1

libsmbldap0-debuginfo: before 4.4.2-38.55.1

libsmbldap0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbldap0: before 4.4.2-38.55.1

libsmbldap0-32bit: before 4.4.2-38.55.1

libsmbconf0-debuginfo: before 4.4.2-38.55.1

libsmbconf0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbconf0: before 4.4.2-38.55.1

libsmbconf0-32bit: before 4.4.2-38.55.1

libsmbclient0-debuginfo: before 4.4.2-38.55.1

libsmbclient0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbclient0: before 4.4.2-38.55.1

libsmbclient0-32bit: before 4.4.2-38.55.1

libsamdb0-debuginfo: before 4.4.2-38.55.1

libsamdb0-debuginfo-32bit: before 4.4.2-38.55.1

libsamdb0: before 4.4.2-38.55.1

libsamdb0-32bit: before 4.4.2-38.55.1

libsamba-util0-debuginfo: before 4.4.2-38.55.1

libsamba-util0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-util0: before 4.4.2-38.55.1

libsamba-util0-32bit: before 4.4.2-38.55.1

libsamba-passdb0-debuginfo: before 4.4.2-38.55.1

libsamba-passdb0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-passdb0: before 4.4.2-38.55.1

libsamba-passdb0-32bit: before 4.4.2-38.55.1

libsamba-hostconfig0-debuginfo: before 4.4.2-38.55.1

libsamba-hostconfig0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-hostconfig0: before 4.4.2-38.55.1

libsamba-hostconfig0-32bit: before 4.4.2-38.55.1

libsamba-errors0-debuginfo: before 4.4.2-38.55.1

libsamba-errors0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-errors0: before 4.4.2-38.55.1

libsamba-errors0-32bit: before 4.4.2-38.55.1

libsamba-credentials0-debuginfo: before 4.4.2-38.55.1

libsamba-credentials0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-credentials0: before 4.4.2-38.55.1

libsamba-credentials0-32bit: before 4.4.2-38.55.1

libnetapi0-debuginfo: before 4.4.2-38.55.1

libnetapi0-debuginfo-32bit: before 4.4.2-38.55.1

libnetapi0: before 4.4.2-38.55.1

libnetapi0-32bit: before 4.4.2-38.55.1

libndr0-debuginfo: before 4.4.2-38.55.1

libndr0-debuginfo-32bit: before 4.4.2-38.55.1

libndr0: before 4.4.2-38.55.1

libndr0-32bit: before 4.4.2-38.55.1

libndr-standard0-debuginfo: before 4.4.2-38.55.1

libndr-standard0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-standard0: before 4.4.2-38.55.1

libndr-standard0-32bit: before 4.4.2-38.55.1

libndr-nbt0-debuginfo: before 4.4.2-38.55.1

libndr-nbt0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-nbt0: before 4.4.2-38.55.1

libndr-nbt0-32bit: before 4.4.2-38.55.1

libndr-krb5pac0-debuginfo: before 4.4.2-38.55.1

libndr-krb5pac0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-krb5pac0: before 4.4.2-38.55.1

libndr-krb5pac0-32bit: before 4.4.2-38.55.1

libdcerpc0-debuginfo: before 4.4.2-38.55.1

libdcerpc0-debuginfo-32bit: before 4.4.2-38.55.1

libdcerpc0: before 4.4.2-38.55.1

libdcerpc0-32bit: before 4.4.2-38.55.1

libdcerpc-binding0-debuginfo: before 4.4.2-38.55.1

libdcerpc-binding0-debuginfo-32bit: before 4.4.2-38.55.1

libdcerpc-binding0: before 4.4.2-38.55.1

libdcerpc-binding0-32bit: before 4.4.2-38.55.1

samba-doc: before 4.4.2-38.55.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20230122-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Use of a broken or risky cryptographic algorithm

EUVDB-ID: #VU69151

Risk: High

CVSSv3.1: 7.1 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-38023

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to security features bypass in Netlogon RPC. A remote attacker can bypass the Netlogon cryptography feature for signing and sealing traffic during Netlogon authentication.

Mitigation

Update the affected package samba to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server: 12-SP2-BCL

samba-winbind-debuginfo: before 4.4.2-38.55.1

samba-winbind-debuginfo-32bit: before 4.4.2-38.55.1

samba-winbind: before 4.4.2-38.55.1

samba-winbind-32bit: before 4.4.2-38.55.1

samba-libs-debuginfo: before 4.4.2-38.55.1

samba-libs-debuginfo-32bit: before 4.4.2-38.55.1

samba-libs: before 4.4.2-38.55.1

samba-libs-32bit: before 4.4.2-38.55.1

samba-debugsource: before 4.4.2-38.55.1

samba-debuginfo: before 4.4.2-38.55.1

samba-client-debuginfo: before 4.4.2-38.55.1

samba-client-debuginfo-32bit: before 4.4.2-38.55.1

samba-client: before 4.4.2-38.55.1

samba-client-32bit: before 4.4.2-38.55.1

samba: before 4.4.2-38.55.1

libwbclient0-debuginfo: before 4.4.2-38.55.1

libwbclient0-debuginfo-32bit: before 4.4.2-38.55.1

libwbclient0: before 4.4.2-38.55.1

libwbclient0-32bit: before 4.4.2-38.55.1

libtevent-util0-debuginfo: before 4.4.2-38.55.1

libtevent-util0-debuginfo-32bit: before 4.4.2-38.55.1

libtevent-util0: before 4.4.2-38.55.1

libtevent-util0-32bit: before 4.4.2-38.55.1

libsmbldap0-debuginfo: before 4.4.2-38.55.1

libsmbldap0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbldap0: before 4.4.2-38.55.1

libsmbldap0-32bit: before 4.4.2-38.55.1

libsmbconf0-debuginfo: before 4.4.2-38.55.1

libsmbconf0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbconf0: before 4.4.2-38.55.1

libsmbconf0-32bit: before 4.4.2-38.55.1

libsmbclient0-debuginfo: before 4.4.2-38.55.1

libsmbclient0-debuginfo-32bit: before 4.4.2-38.55.1

libsmbclient0: before 4.4.2-38.55.1

libsmbclient0-32bit: before 4.4.2-38.55.1

libsamdb0-debuginfo: before 4.4.2-38.55.1

libsamdb0-debuginfo-32bit: before 4.4.2-38.55.1

libsamdb0: before 4.4.2-38.55.1

libsamdb0-32bit: before 4.4.2-38.55.1

libsamba-util0-debuginfo: before 4.4.2-38.55.1

libsamba-util0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-util0: before 4.4.2-38.55.1

libsamba-util0-32bit: before 4.4.2-38.55.1

libsamba-passdb0-debuginfo: before 4.4.2-38.55.1

libsamba-passdb0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-passdb0: before 4.4.2-38.55.1

libsamba-passdb0-32bit: before 4.4.2-38.55.1

libsamba-hostconfig0-debuginfo: before 4.4.2-38.55.1

libsamba-hostconfig0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-hostconfig0: before 4.4.2-38.55.1

libsamba-hostconfig0-32bit: before 4.4.2-38.55.1

libsamba-errors0-debuginfo: before 4.4.2-38.55.1

libsamba-errors0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-errors0: before 4.4.2-38.55.1

libsamba-errors0-32bit: before 4.4.2-38.55.1

libsamba-credentials0-debuginfo: before 4.4.2-38.55.1

libsamba-credentials0-debuginfo-32bit: before 4.4.2-38.55.1

libsamba-credentials0: before 4.4.2-38.55.1

libsamba-credentials0-32bit: before 4.4.2-38.55.1

libnetapi0-debuginfo: before 4.4.2-38.55.1

libnetapi0-debuginfo-32bit: before 4.4.2-38.55.1

libnetapi0: before 4.4.2-38.55.1

libnetapi0-32bit: before 4.4.2-38.55.1

libndr0-debuginfo: before 4.4.2-38.55.1

libndr0-debuginfo-32bit: before 4.4.2-38.55.1

libndr0: before 4.4.2-38.55.1

libndr0-32bit: before 4.4.2-38.55.1

libndr-standard0-debuginfo: before 4.4.2-38.55.1

libndr-standard0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-standard0: before 4.4.2-38.55.1

libndr-standard0-32bit: before 4.4.2-38.55.1

libndr-nbt0-debuginfo: before 4.4.2-38.55.1

libndr-nbt0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-nbt0: before 4.4.2-38.55.1

libndr-nbt0-32bit: before 4.4.2-38.55.1

libndr-krb5pac0-debuginfo: before 4.4.2-38.55.1

libndr-krb5pac0-debuginfo-32bit: before 4.4.2-38.55.1

libndr-krb5pac0: before 4.4.2-38.55.1

libndr-krb5pac0-32bit: before 4.4.2-38.55.1

libdcerpc0-debuginfo: before 4.4.2-38.55.1

libdcerpc0-debuginfo-32bit: before 4.4.2-38.55.1

libdcerpc0: before 4.4.2-38.55.1

libdcerpc0-32bit: before 4.4.2-38.55.1

libdcerpc-binding0-debuginfo: before 4.4.2-38.55.1

libdcerpc-binding0-debuginfo-32bit: before 4.4.2-38.55.1

libdcerpc-binding0: before 4.4.2-38.55.1

libdcerpc-binding0-32bit: before 4.4.2-38.55.1

samba-doc: before 4.4.2-38.55.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20230122-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###