Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2023.0247
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2023-0247)
Zusammenfassung:	The remote host is missing an update for the 'samba' package(s) announced via the MGASA-2023-0247 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'samba' package(s) announced via the MGASA-2023-0247 advisory. Vulnerability Insight: Out-of-bounds read due to insufficient length checks in winbindd_pam_auth_crap.c (CVE-2022-2127) Improper SMB2 packet signing mechanism leading to man in the middle risk (CVE-2023-3347) Infinite loop vulnerability was found in Samba's mdssvc RPC service for Spotlight (CVE-2023-34966) Type Confusion vulnerability was found in Samba's mdssvc RPC service for Spotlight (CVE-2023-34967) Path disclosure vulnerability in the Spotlight protocol (CVE-2023-34968) Affected Software/OS: 'samba' package(s) on Mageia 8. Solution: Please install the updated package(s). CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2022-2127 RHBZ#2222791 https://bugzilla.redhat.com/show_bug.cgi?id=2222791 RHSA-2023:6667 https://access.redhat.com/errata/RHSA-2023:6667 RHSA-2023:7139 https://access.redhat.com/errata/RHSA-2023:7139 RHSA-2024:0423 https://access.redhat.com/errata/RHSA-2024:0423 RHSA-2024:0580 https://access.redhat.com/errata/RHSA-2024:0580 https://access.redhat.com/security/cve/CVE-2022-2127 https://lists.debian.org/debian-lts-announce/2024/04/msg00015.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BPCSGND7LO467AJGR5DYBGZLTCGTOBCC/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OT74M42E6C36W7PQVY3OS4ZM7DVYB64Z/ https://security.netapp.com/advisory/ntap-20230731-0010/ https://www.debian.org/security/2023/dsa-5477 https://www.samba.org/samba/security/CVE-2022-2127.html Common Vulnerability Exposure (CVE) ID: CVE-2023-3347 RHBZ#2222792 https://bugzilla.redhat.com/show_bug.cgi?id=2222792 RHSA-2023:4325 https://access.redhat.com/errata/RHSA-2023:4325 RHSA-2023:4328 https://access.redhat.com/errata/RHSA-2023:4328 https://access.redhat.com/security/cve/CVE-2023-3347 https://www.samba.org/samba/security/CVE-2023-3347.html Common Vulnerability Exposure (CVE) ID: CVE-2023-34966 RHBZ#2222793 https://bugzilla.redhat.com/show_bug.cgi?id=2222793 https://access.redhat.com/security/cve/CVE-2023-34966 https://www.samba.org/samba/security/CVE-2023-34966 Common Vulnerability Exposure (CVE) ID: CVE-2023-34967 RHBZ#2222794 https://bugzilla.redhat.com/show_bug.cgi?id=2222794 https://access.redhat.com/security/cve/CVE-2023-34967 https://www.samba.org/samba/security/CVE-2023-34967.html Common Vulnerability Exposure (CVE) ID: CVE-2023-34968 RHBZ#2222795 https://bugzilla.redhat.com/show_bug.cgi?id=2222795 https://access.redhat.com/security/cve/CVE-2023-34968 https://www.samba.org/samba/security/CVE-2023-34968.html
Copyright	Copyright (C) 2023 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.