Cov kev kho tshiab ntawm Samba 4.17.2, 4.16.6, thiab 4.15.11 tau tso tawm lawm, daws ob qhov teeb meem tsis zoo. Koj tuaj yeem taug qab qhov kev tso tawm ntawm cov pob khoom hloov tshiab hauv cov kev faib tawm no ntawm cov nplooj ntawv hauv qab no: Debian, Ubuntu, Gentoo, RHEL, SUSE, Arch, FreeBSD.
- CVE-2022-3437 — Muaj ib qho buffer overflow hauv cov unwrap_des() thiab unwrap_des3() functions uas muab rau hauv GSSAPI library los ntawm Heimdal package (muaj nrog Samba txij li version 4.0). Qhov tsis muaj zog no tuaj yeem raug siv los ntawm kev xa ib pob ntawv tshwj xeeb mus rau cov systems siv GSSAPI. Piv txwv li, qhov teeb meem no tshwm sim hauv cov client thiab file system implementations. neeg rau zaub mov Raws li SMB1 protocol, siv DCE/RPC thiab ntawm Active Directory domain controller. Cov kab ke uas tsim los nrog MIT Kerberos (—with-system-mitkrb5) es tsis yog Heimdal tsis raug cuam tshuam los ntawm qhov teeb meem no.
- CVE-2022-3592 - Muaj peev xwm hla dhau qhov ciam teb ntawm daim nplaub tshev xa tawm thiab nkag mus rau txhua cov ntaub ntawv ntawm server Los ntawm kev tswj cov symbolic links. Qhov teeb meem no yog tshwj xeeb rau Samba 4.17 thiab yog tshwm sim los ntawm qhov yuam kev hauv cov lej tshiab rau kev tswj cov symbolic links hauv qhov chaw neeg siv (cov lej tsis muaj kev kuaj xyuas kom paub tseeb tias qhov link's target directory nyob sab nraum cov exported directory). Qhov tsis zoo no tuaj yeem raug siv los ntawm tus neeg siv khoom uas muaj kev nkag mus rau qhov exported partition, muab los ntawm SMB1 lossis NFS protocols, uas tso cai rau kev tsim cov symbolic links.
Tau qhov twg los: opennet.ru
