Samba cve-2018-1050 and 1057

dz00te · March 13, 2018, 11:14am

just to report two new samba security issues

https://lists.samba.org/archive/samba-announce/2018/000435.html

https://www.samba.org/samba/security/CVE-2018-1050.html
https://www.samba.org/samba/security/CVE-2018-1057.html

https://wiki.samba.org/index.php/CVE-2018-1057

saitobenkei · March 14, 2018, 3:19pm

from what I understand this should only work if the attack is carried out via intranet, not via internet.
Right?

davidep · March 14, 2018, 5:53pm

Yes the domain controller LDAP service binds to a LAN IP.

Samba has released the fix yesterday:

https://www.samba.org/samba/history/samba-4.6.14.html

davidep · March 15, 2018, 4:51pm

The RPM is available from testing repository /cc @quality_team

 yum --enablerepo=nethserver-testing update nethserver-dc

davidep · March 16, 2018, 9:30am

The testing package is on production in my DC since yesterday: I’m going to release it today! Please provide some testing feedback!

mrmarkuz · March 16, 2018, 11:37am

Tested on a fresh VM and on my home server:

On the fresh VM it just worked. I tested joining and domain logon from Windows 7.

On the home server I had to reset permissions to make ACL shares work again but this is not related to nethserver-dc I think. Domain logons from Windows 10 worked normally after update.

alefattorini · March 16, 2018, 3:04pm

Thanks Markus great feedback