Release date:
2023-12-19 18:48:34 UTC
Description:
* SECURITY UPDATE: A heap-based buffer overflow vulnerability was
found in Samba within the GSSAPI unwrap_des() and unwrap_des3()
routines of Heimdal
- debian/patches/CVE-2022-3437-1.patch: third_party/heimdal:
use constant-time memcmp() for arcfour unwrap
- debian/patches/CVE-2022-3437-3.patch: third_party/heimdal:
check buffer length against overflow for DES{,3} unwrap
- debian/patches/CVE-2022-3437-4.patch: third_party/heimdal:
don't pass NULL pointers to memcpy() in DES unwrap
- debian/patches/CVE-2022-3437-5.patch: third_party/heimdal:
use constant-time memcmp() in unwrap_des3()
- debian/patches/CVE-2022-3437-7.patch: third_party/heimdal:
pass correct length to _gssapi_verify_pad()
- debian/patches/CVE-2022-3437-8.patch: third_party/heimdal:
check the result of _gsskrb5_get_mech()
- debian/patches/CVE-2022-3437-9.patch: third_party/heimdal:
remove __func__ compatibility workaround
- debian/patches/CVE-2022-3437-10.patch: third_party/heimdal:
check for overflow in _gsskrb5_get_mech()
- debian/patches/CVE-2022-3437-11.patch: third_party/heimdal:
avoid undefined behaviour in _gssapi_verify_pad()
- CVE-2022-3437
Updated packages:
-
ctdb_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:451c0b41e460f8a000db559fdc04fde5a53380f4
-
libnss-winbind_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:70b85481b3e0f19d654a2acfd915230bd2a2e3ae
-
libpam-winbind_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:57d472585f1d50d0052825a104820a9dddbe29f7
-
libparse-pidl-perl_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:dcc90a76cf911a009caba6b68e051e8f7d281096
-
libsmbclient_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:d03ddff7f7c9da36b1518bff92e752591c6e7882
-
libsmbclient-dev_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:964cd8a091fcf7654470cde5865c896027d405c9
-
libwbclient-dev_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:954ce84c7ce7279e07862b1b6fdc4ab0fb318fcf
-
libwbclient0_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:7d698861478e598493905067d71c68045f549e31
-
python-samba_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:7e8937ff7a987e2b7d9a0e282eb3737b44fb059d
-
registry-tools_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:aa36c70bcd61a8fd0cdeaf9f02fd308533a1cf7f
-
samba_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:976a7f7f34a88a3a636b27f985565e69f6f450d9
-
samba-common_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_all.deb
sha:9756ba343a988d02c4ef09c4442bf2045f5a9f0b
-
samba-common-bin_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:e08fe3b7319c41f59b94e01e121830fabca9f9e8
-
samba-dev_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:ebfd26652ca8227b81e911c0339706b836ac582b
-
samba-dsdb-modules_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:ff3ed5732f5d63c0d7d3cb4b95ad23e2645e4d82
-
samba-libs_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:7ae6caca79b52bbeed9d7ff83eec48b7e82977d0
-
samba-testsuite_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:9924a624e5f694dddad0b97f9b26b046a965137f
-
samba-vfs-modules_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:416d73440f9932189090248cd7b27374fd78ffe5
-
smbclient_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:8401f7f8539253cf23287f7eff8c884b058fd84e
-
winbind_4.7.6+dfsg~ubuntu-0ubuntu2.29+tuxcare.els5_amd64.deb
sha:775262cd6e7ce9404284e6e262dd42196aaa47a9
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
