pepelyaevip/vuln-list-alt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
307fb8e080
vuln-list-alt/oval/c10f1/ALT-PU-2017-2288/definitions.json
pepelyaevip 56bb29c44b ALT Vulnerability
2024-06-28 13:17:52 +00:00

233 lines
10 KiB
JSON
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20172288",
"Version": "oval:org.altlinux.errata:def:20172288",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2017-2288: package `samba-DC` update to version 4.6.8-alt1.S1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2017-2288",
"RefURL": "https://errata.altlinux.org/ALT-PU-2017-2288",
"Source": "ALTPU"
},
{
"RefID": "BDU:2019-00223",
"RefURL": "https://bdu.fstec.ru/vul/2019-00223",
"Source": "BDU"
},
{
"RefID": "BDU:2019-00224",
"RefURL": "https://bdu.fstec.ru/vul/2019-00224",
"Source": "BDU"
},
{
"RefID": "BDU:2021-01433",
"RefURL": "https://bdu.fstec.ru/vul/2021-01433",
"Source": "BDU"
},
{
"RefID": "CVE-2017-12150",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2017-12150",
"Source": "CVE"
},
{
"RefID": "CVE-2017-12151",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2017-12151",
"Source": "CVE"
},
{
"RefID": "CVE-2017-12163",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2017-12163",
"Source": "CVE"
}
],
"Description": "This update upgrades samba-DC to version 4.6.8-alt1.S1. \nSecurity Fix(es):\n\n * BDU:2019-00223: Уязвимость пакета программ для сетевого взаимодействия Samba, связанная с отсутствием подписи SMB-трафика, позволяющая нарушителю реализовать атаку «человек посередине»\n\n * BDU:2019-00224: Уязвимость пакета программ для сетевого взаимодействия Samba, связанная с отсутствием требования подписи и шифрования SMB-трафика при использовании перенаправлений DFS, позволяющая нарушителю реализовать атаку «человек посередине»\n\n * BDU:2021-01433: Уязвимость реализации протокола SMB1 пакета программ сетевого взаимодействия Samba, позволяющая нарушителю получить доступ к конфиденциальным данным и нарушить их целостность\n\n * CVE-2017-12150: It was found that samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8 did not enforce \"SMB signing\" when certain configuration options were enabled. A remote attacker could launch a man-in-the-middle attack and retrieve information in plain-text.\n\n * CVE-2017-12151: A flaw was found in the way samba client before samba 4.4.16, samba 4.5.14 and samba 4.6.8 used encryption with the max protocol set as SMB3. The connection could lose the requirement for signing and encrypting to any DFS redirects, allowing an attacker to read or alter the contents of the connection via a man-in-the-middle attack.\n\n * CVE-2017-12163: An information leak flaw was found in the way SMB1 protocol was implemented by Samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8. A malicious client could use this flaw to dump server memory contents to a file on the samba share or to a shared printer, though the exact area of server memory cannot be controlled by the attacker.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2017-09-21"
},
"Updated": {
"Date": "2017-09-21"
},
"BDUs": [
{
"ID": "BDU:2019-00223",
"CVSS": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"CVSS3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"CWE": "CWE-300",
"Href": "https://bdu.fstec.ru/vul/2019-00223",
"Impact": "High",
"Public": "20170920"
},
{
"ID": "BDU:2019-00224",
"CVSS": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"CVSS3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"CWE": "CWE-300",
"Href": "https://bdu.fstec.ru/vul/2019-00224",
"Impact": "High",
"Public": "20170920"
},
{
"ID": "BDU:2021-01433",
"CVSS": "AV:A/AC:L/Au:N/C:P/I:P/A:N",
"CVSS3": "AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
"CWE": "CWE-200",
"Href": "https://bdu.fstec.ru/vul/2021-01433",
"Impact": "High",
"Public": "20180726"
}
],
"CVEs": [
{
"ID": "CVE-2017-12150",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"CVSS3": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2017-12150",
"Impact": "High",
"Public": "20180726"
},
{
"ID": "CVE-2017-12151",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"CVSS3": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"CWE": "CWE-310",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2017-12151",
"Impact": "High",
"Public": "20180727"
},
{
"ID": "CVE-2017-12163",
"CVSS": "AV:A/AC:L/Au:N/C:P/I:P/A:N",
"CVSS3": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
"CWE": "CWE-200",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2017-12163",
"Impact": "High",
"Public": "20180726"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:4001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20172288001",
"Comment": "libldb-modules-DC is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288002",
"Comment": "libwbclient-DC is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288003",
"Comment": "libwbclient-DC-devel is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288004",
"Comment": "python-module-samba-DC is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288005",
"Comment": "samba-DC is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288006",
"Comment": "samba-DC-client is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288007",
"Comment": "samba-DC-common is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288008",
"Comment": "samba-DC-common-libs is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288009",
"Comment": "samba-DC-ctdb is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288010",
"Comment": "samba-DC-ctdb-tests is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288011",
"Comment": "samba-DC-devel is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288012",
"Comment": "samba-DC-doc is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288013",
"Comment": "samba-DC-libs is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288014",
"Comment": "samba-DC-pidl is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288015",
"Comment": "samba-DC-test is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288016",
"Comment": "samba-DC-util-private-headers is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288017",
"Comment": "samba-DC-winbind is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288018",
"Comment": "samba-DC-winbind-clients is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288019",
"Comment": "samba-DC-winbind-krb5-locator is earlier than 0:4.6.8-alt1.S1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172288020",
"Comment": "task-samba-dc is earlier than 0:4.6.8-alt1.S1"
}
]
}
]
}
}
]
}
Reference in New Issue View Git Blame Copy Permalink