[CLSA-2023:1675372486] Fix CVE(s): CVE-2022-3437
Type:
security
Severity:
Moderate
Release date:
2023-02-02 21:14:46 UTC
Description:
* SECURITY UPDATE: heap-based buffer overflows in Heimdal ARC4 and DES3 - debian/patches/CVE-2022-3437.patch: add extra NULL pointer and buffer boundaries checks, fix undefined behaviour and input data length calculations, remove accidentally duplicated code in arcfour.c - CVE-2022-3437
Updated packages:
  • ctdb_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:d675b7c75514a1f15b4e90dcdc179ce56e64a061
  • libnss-winbind_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:0eed3439ada330ea87af08625da0bc4ee027cb91
  • libpam-winbind_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:14ebcf8b53eac7a98a9c8c301ebba1c6c512c762
  • libparse-pidl-perl_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:709de93582ae199fbc3cb3740b90d4f866322ad5
  • libsmbclient_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:7fe0a3932f4865fd5759ffc5c3bab091ec086a02
  • libsmbclient-dev_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:cadd140006892e7d72b42242a8dbb6ba64ec9b4b
  • libwbclient-dev_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:a6ad339a2f15dbd8307c493966d588bef115d612
  • libwbclient0_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:a198655315b2f6d0536c87554bbc021672eac23a
  • python-samba_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:9b1a1dc927b732c5dd9c452448838d3a061d1862
  • registry-tools_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:3df42ceac763d6d4a9836d9b615f33a25d591a1b
  • samba_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:dbc2262cf1a2745ac812938f0e7e4403e00240fe
  • samba-common_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_all.deb
    sha:fc38c18c5f8672c756447f2d576222ef5a4fd106
  • samba-common-bin_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:a36ac39621331a867ba35d7a3778bca6b5b878b0
  • samba-dev_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:0adabf74d589b679620cde70580ec04a2f1c6a26
  • samba-dsdb-modules_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:cbd7b24776eab6b4fdc9c320b520490e30c78230
  • samba-libs_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:3bcc0550ece3df8209a7d457ac75448cc9a85605
  • samba-testsuite_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:ca44c2c5b071f66be846c9e50c4072def09ff373
  • samba-vfs-modules_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:0168c0761bec828aab533cf75bf2d2609946eb33
  • smbclient_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:bef8bc41e68da83808a84cd50ca06385383e1fb5
  • winbind_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els3_amd64.deb
    sha:ae8323ae4715654072a48eb611454ee3be46108d
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.