stable

libldb-2.5.2-1.fc36 and samba-4.16.4-0.fc36

FEDORA-2022-19600c9743 created by asn 2 years ago for Fedora 36

Update to version 4.16.4 to address security fixes for CVE-2022-32742, CVE-2022-32744, CVE-2022-32745, CVE-2022-32746

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2022-19600c9743

This update's test gating status has been changed to 'waiting'.

2 years ago

This update has been submitted for testing by bodhi.

2 years ago

asn edited this update.

2 years ago

This update's test gating status has been changed to 'passed'.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon gd commented & provided feedback 2 years ago
karma

LGTM

BZ#2026711 CVE-2020-17049 samba: Kerberos: delegation constrain bypass in S4U2Proxy [fedora-all]
BZ#2108196 CVE-2022-32742 samba: server memory information leak via SMB1
BZ#2111490 samba-4.16.4 is available
BZ#2111729 CVE-2022-32742 samba: server memory information leak via SMB1 [fedora-all]
BZ#2111731 CVE-2022-32744 samba: AD users can forge password change requests for any user [fedora-all]
BZ#2111732 CVE-2022-32745 samba: AD users can crash the server process with an LDAP add or modify request [fedora-all]
BZ#2111734 CVE-2022-32746 samba: AD users can induce a use-after-free in the server process with an LDAP add or modify request [fedora-all]
BZ#2111735 CVE-2022-32746 libldb: samba: AD users can induce a use-after-free in the server process with an LDAP add or modify request [fedora-all]
karma

This update can be pushed to stable now if the maintainer wishes

2 years ago
User Icon andilinux commented & provided feedback 2 years ago
karma

works

This update has been submitted for stable by bodhi.

2 years ago
User Icon andilinux commented & provided feedback 2 years ago
karma

works

User Icon andilinux commented & provided feedback 2 years ago
karma

works

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata
Type
security
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
modified
2 years ago
BZ#2026711 CVE-2020-17049 samba: Kerberos: delegation constrain bypass in S4U2Proxy [fedora-all]
0
1
BZ#2108196 CVE-2022-32742 samba: server memory information leak via SMB1
0
1
BZ#2111490 samba-4.16.4 is available
0
1
BZ#2111729 CVE-2022-32742 samba: server memory information leak via SMB1 [fedora-all]
0
1
BZ#2111731 CVE-2022-32744 samba: AD users can forge password change requests for any user [fedora-all]
0
1
BZ#2111732 CVE-2022-32745 samba: AD users can crash the server process with an LDAP add or modify request [fedora-all]
0
1
BZ#2111734 CVE-2022-32746 samba: AD users can induce a use-after-free in the server process with an LDAP add or modify request [fedora-all]
0
1
BZ#2111735 CVE-2022-32746 libldb: samba: AD users can induce a use-after-free in the server process with an LDAP add or modify request [fedora-all]
0
1

Automated Test Results

Test Cases

0 1 Test Case desktop network smb