openEuler update for samba

1) Use of a broken or risky cryptographic algorithm

EUVDB-ID: #VU69151

Risk: High

CVSSv4.0: 7.2 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2022-38023

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to security features bypass in Netlogon RPC. A remote attacker can bypass the Netlogon cryptography feature for signing and sealing traffic during Netlogon authentication.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP1 - 22.03 LTS SP1

samba-vfs-glusterfs: before 4.11.12-25

samba-pidl: before 4.11.12-25

samba-winbind-krb5-locator: before 4.11.12-25

libsmbclient: before 4.11.12-25

samba-common: before 4.11.12-25

samba-help: before 4.11.12-25

samba-debugsource: before 4.11.12-25

samba-winbind: before 4.11.12-25

samba-winbind-clients: before 4.11.12-25

samba-krb5-printing: before 4.11.12-25

samba-dc-provision: before 4.11.12-25

samba-libs: before 4.11.12-25

libwbclient-devel: before 4.11.12-25

ctdb: before 4.11.12-25

python3-samba-test: before 4.11.12-25

libsmbclient-devel: before 4.11.12-25

samba-test: before 4.11.12-25

samba-devel: before 4.11.12-25

python3-samba-dc: before 4.11.12-25

samba-debuginfo: before 4.11.12-25

samba-common-tools: before 4.11.12-25

ctdb-tests: before 4.11.12-25

samba-dc-bind-dlz: before 4.11.12-25

samba-dc: before 4.11.12-25

samba-client: before 4.11.12-25

python3-samba: before 4.11.12-25

libwbclient: before 4.11.12-25

samba-winbind-modules: before 4.11.12-25

samba: before 4.11.12-25

CPE2.3

• cpe:2.3:o:openeuler:openeuler:20.03:LTS SP1:*:*:*:*:*:*
• cpe:2.3:o:openeuler:openeuler:20.03:LTS SP3:*:*:*:*:*:*
• cpe:2.3:o:openeuler:openeuler:22.03:LTS:*:*:*:*:*:*
• cpe:2.3:a:openeuler:samba-vfs-glusterfs:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-pidl:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-winbind-krb5-locator:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:libsmbclient:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-common:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-help:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-debugsource:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-winbind:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-winbind-clients:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-krb5-printing:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-dc-provision:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-libs:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:libwbclient-devel:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:ctdb:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:python3-samba-test:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:libsmbclient-devel:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-test:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-devel:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:python3-samba-dc:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-debuginfo:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-common-tools:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:ctdb-tests:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-dc-bind-dlz:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-dc:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-client:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:python3-samba:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:libwbclient:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba-winbind-modules:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:samba:*:*:*:*:*:openeuler:*:*

External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2023-1048

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.