Package samba-dc-libs: Information
Default inline alert: Version in the repository: 4.20.1-alt1
Binary package: samba-dc-libs
Version: 4.14.10-alt1
Architecture: aarch64
Build time: Nov 10, 2021, 06:59 AM in the task #289117
Source package: samba
Category: System/Libraries
Report package bugDownload: samba-dc-libs-4.14.10-alt1.aarch64.rpm
Home page: http://www.samba.org/
Summary: Samba libraries
Description:
The samba-libs package contains the libraries needed by programs that link against the SMB, RPC and other protocols provided by the Samba suite.
Maintainer: Evgeny Sinelnikov
List of contributors:
Evgeny Sinelnikov
Ivan A. Melnikov
Michael Shigorin
Grigory Ustinov
Alexey Shabalin
Alexey Sheplyakov
Andrey Cherepanov
Igor Vlasenko
Vitaly Kuznetsov
Evgeny Sinelnikov
Ivan A. Melnikov
Michael Shigorin
Grigory Ustinov
Alexey Shabalin
Alexey Sheplyakov
Andrey Cherepanov
Igor Vlasenko
Vitaly Kuznetsov
Last changed
Nov. 7, 2021 Evgeny Sinelnikov 4.14.10-alt1
- Update to latest security release of Samba 4.14 - Security fixes: + CVE-2016-2124: SMB1 client connections can be downgraded to plaintext authentication. https://www.samba.org/samba/security/CVE-2016-2124.html + CVE-2020-25717: A user on the domain can become root on domain members. https://www.samba.org/samba/security/CVE-2020-25717.html + CVE-2020-25718: Samba AD DC did not correctly sandbox Kerberos tickets issued by an RODC. https://www.samba.org/samba/security/CVE-2020-25718.html + CVE-2020-25719: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets. https://www.samba.org/samba/security/CVE-2020-25719.html + CVE-2020-25721: Kerberos acceptors need easy access to stable AD identifiers (eg objectSid). https://www.samba.org/samba/security/CVE-2020-25721.html + CVE-2020-25722: Samba AD DC did not do suffienct access and conformance checking of data stored. https://www.samba.org/samba/security/CVE-2020-25722.html + CVE-2021-3738: Use after free in Samba AD DC RPC server. https://www.samba.org/samba/security/CVE-2021-3738.html + CVE-2021-23192: Subsequent DCE/RPC fragment injection vulnerability. https://www.samba.org/samba/security/CVE-2021-23192.html
Nov. 7, 2021 Evgeny Sinelnikov 4.14.9-alt2
- Rebuild with updated ldb-2.3.2 with backported all C code changes from ldb-2.4.1 to be available for Samba 4.14.x.
Nov. 1, 2021 Evgeny Sinelnikov 4.14.9-alt1
- Update to latest security release of Samba 4.14 - Backport bronze bit fixes, tests, and selftest improvements. Provide a fix for MS in Samba [SECURITY] 'Bronze bit' S4U2Proxy Constrained Delegation bypass in Samba with embedded Heimdal (Fixes: CVE-2020-17049).