Project

General

Profile

Bug #41385

Update Samba port to address August CVEs

Added by Timur Bakeyev 8 months ago. Updated 8 months ago.

Status:
Done
Priority:
No priority
Assignee:
Timur Bakeyev
Category:
Services
Target version:
Seen in:
Severity:
High
Reason for Closing:
Reason for Blocked:
Needs QA:
No
Needs Doc:
No
Needs Merging:
No
Needs Automation:
No
Support Suite Ticket:
n/a
Hardware Configuration:
ChangeLog Required:
No

Description

There is a new bunch of Samba CVEs going to be disclosed on 08/14.

We need to update our Samba ports accordingly.


Related issues

Copied from FreeNAS - Bug #41380: Update Samba port to address August CVEsDone

Associated revisions

Revision 80859128 (diff)
Added by Dru Lavigne 8 months ago

Mention patches for recent vulnerabilities.
Ticket: #41028
Ticket: #41385
Ticket: #41772

History

#1 Updated by Timur Bakeyev 8 months ago

  • Copied from Bug #41380: Update Samba port to address August CVEs added

#2 Updated by Dru Lavigne 8 months ago

  • Target version changed from TrueNAS-11.1-U6.1 to 11.1-U6

#3 Updated by Timur Bakeyev 8 months ago

  • Status changed from Unscreened to In Progress

#4 Updated by Timur Bakeyev 8 months ago

  • Private changed from Yes to No

#5 Updated by Dru Lavigne 8 months ago

From https://www.samba.org/samba/latest_news.html#4.8.4:
CVE-2018-10858 (Insufficient input validation on client directory listing in libsmbclient.),
CVE-2018-10918 (Denial of Service Attack on AD DC DRSUAPI server.),
CVE-2018-10919 (Confidential attribute disclosure from the AD LDAP server.),
CVE-2018-1139 (Weak authentication protocol allowed.) and
CVE-2018-1140 (Denial of Service Attack on DNS and LDAP server.).

#7 Updated by Dru Lavigne 8 months ago

  • Status changed from In Progress to Ready for Testing
  • Needs Merging changed from Yes to No

#9 Updated by Bonnie Follweiler 8 months ago

  • Status changed from Ready for Testing to Passed Testing
  • Needs QA changed from Yes to No

#11 Updated by Dru Lavigne 8 months ago

  • Status changed from Passed Testing to Done
  • Needs Doc changed from Yes to No

Also available in: Atom PDF