FEDORA-2018-bc22d6c7bc

security update in Fedora 28 for libldb and samba

Status: stable 10 months ago

Update to Samba 4.8.4, Security fix for CVE-2018-1139, CVE-2018-1140, CVE-2018-10858, CVE-2018-10918, CVE-2018-10919

How to install

sudo dnf upgrade --advisory=FEDORA-2018-bc22d6c7bc

Comments 9

This update has been submitted for testing by gd.

gd edited this update.

New build(s):

  • libldb-1.4.0-3.fc28.1.3.5

Karma has been reset.

This update has been pushed to testing.

works for me

karma: +1

works for me

karma: +1

This update has been submitted for batched by bodhi.

This update has been submitted for stable by abbra.

This update has been pushed to stable.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 10 months ago
in testing 10 months ago
in stable 10 months ago
modified 10 months ago

Related Bugs 10

00 #1580230 CVE-2018-1140 samba: LDAP server crash via distinguishedName
00 #1589651 CVE-2018-1139 samba: Weak authentication protocol regression
00 #1610640 CVE-2018-10918 samba: DsCrackNames on a user without an SPN can trigger NULL-pointer de-reference
00 #1610645 CVE-2018-10919 samba: Confidential attribute disclosure via substring search
00 #1612805 CVE-2018-10858 samba: insufficient input validation in libsmbclient
00 #1617910 CVE-2018-10918 samba: DsCrackNames on a user without an SPN can trigger NULL-pointer de-reference [fedora-all]
00 #1617911 CVE-2018-10919 samba: Confidential attribute disclosure via substring search [fedora-all]
00 #1617916 CVE-2018-1139 samba: Weak authentication protocol regression [fedora-all]
00 #1618613 CVE-2018-1140 libldb: samba: LDAP server crash via distinguishedName [fedora-all]
00 #1618697 CVE-2018-10858 samba: insufficient input validation in libsmbclient [fedora-all]

Automated Test Results

Test Cases

00 Test Case desktop network smb