RHSA-2020:5439-01 -- Redhat sambaID: oval:org.secpod.oval:def:505237 | Date: (C)2021-01-06 (M)2024-04-29 |
Class: PATCH | Family: unix |
Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fix: * samba: Netlogon elevation of privilege vulnerability * samba: Missing handle permissions check in SMB1/2/3 ChangeNotify * samba: Unprivileged user can crash winbind For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Bug Fix: * The "require_membership_of" documentation in pam_winbind manpage is incorrect * Malfunctioning %U substitution in valid users option * Regression: smbd and nmbd are restarted when samba-winbind package is upgraded * winbindd memory leak on wbinfo -u with security=ADS
Platform: |
Red Hat Enterprise Linux 7 |