pepelyaevip/vuln-list-alt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
vuln-list-alt/oval/c9f2/ALT-PU-2019-1638/definitions.json
pepelyaevip 56bb29c44b ALT Vulnerability
2024-06-28 13:17:52 +00:00

245 lines
11 KiB
JSON
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20191638",
"Version": "oval:org.altlinux.errata:def:20191638",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2019-1638: package `samba` update to version 4.10.2-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c9f2"
],
"Products": [
"ALT SPWorkstation",
"ALT SPServer"
]
}
],
"References": [
{
"RefID": "ALT-PU-2019-1638",
"RefURL": "https://errata.altlinux.org/ALT-PU-2019-1638",
"Source": "ALTPU"
},
{
"RefID": "BDU:2020-00725",
"RefURL": "https://bdu.fstec.ru/vul/2020-00725",
"Source": "BDU"
},
{
"RefID": "BDU:2020-00765",
"RefURL": "https://bdu.fstec.ru/vul/2020-00765",
"Source": "BDU"
},
{
"RefID": "CVE-2019-3870",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2019-3870",
"Source": "CVE"
},
{
"RefID": "CVE-2019-3880",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2019-3880",
"Source": "CVE"
}
],
"Description": "This update upgrades samba to version 4.10.2-alt1. \nSecurity Fix(es):\n\n * BDU:2020-00725: Уязвимость программного обеспечения Samba, связанная с ошибками разграничения доступа, позволяющая нарушителю нарушить целостность данных и вызвать отказ в обслуживании\n\n * BDU:2020-00765: Уязвимость пакета программ Samba, связанная с неверным ограничением имени пути к каталогу с ограниченным доступом, позволяющая нарушителю оказать воздействие на целостность и конфиденциальность данных\n\n * CVE-2019-3870: A vulnerability was found in Samba from version (including) 4.9 to versions before 4.9.6 and 4.10.2. During the creation of a new Samba AD DC, files are created in a private subdirectory of the install location. This directory is typically mode 0700, that is owner (root) only access. However in some upgraded installations it will have other permissions, such as 0755, because this was the default before Samba 4.8. Within this directory, files are created with mode 0666, which is world-writable, including a sample krb5.conf, and the list of DNS names and servicePrincipalName values to update.\n\n * CVE-2019-3880: A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. An unprivileged attacker could use this flaw to create a new registry hive file anywhere they have unix permissions which could lead to creation of a new file in the Samba share. Versions before 4.8.11, 4.9.6 and 4.10.2 are vulnerable.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2019-04-15"
},
"Updated": {
"Date": "2019-04-15"
},
"BDUs": [
{
"ID": "BDU:2020-00725",
"CVSS": "AV:L/AC:L/Au:N/C:N/I:P/A:C",
"CVSS3": "AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"CWE": "CWE-275",
"Href": "https://bdu.fstec.ru/vul/2020-00725",
"Impact": "Low",
"Public": "20190409"
},
{
"ID": "BDU:2020-00765",
"CVSS": "AV:N/AC:L/Au:S/C:N/I:P/A:P",
"CVSS3": "AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"CWE": "CWE-22",
"Href": "https://bdu.fstec.ru/vul/2020-00765",
"Impact": "Low",
"Public": "20190408"
}
],
"CVEs": [
{
"ID": "CVE-2019-3870",
"CVSS": "AV:L/AC:L/Au:N/C:N/I:P/A:P",
"CVSS3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"CWE": "CWE-276",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2019-3870",
"Impact": "Low",
"Public": "20190409"
},
{
"ID": "CVE-2019-3880",
"CVSS": "AV:N/AC:L/Au:S/C:N/I:P/A:P",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"CWE": "CWE-22",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2019-3880",
"Impact": "Low",
"Public": "20190409"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:8.4",
"cpe:/o:alt:spserver:8.4"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:3001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20191638001",
"Comment": "libldb-modules-dc is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638002",
"Comment": "libnetapi is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638003",
"Comment": "libnetapi-devel is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638004",
"Comment": "libsmbclient is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638005",
"Comment": "libsmbclient-devel is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638006",
"Comment": "libwbclient is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638007",
"Comment": "libwbclient-devel is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638008",
"Comment": "python-module-samba is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638009",
"Comment": "python3-module-samba is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638010",
"Comment": "python3-module-samba-devel is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638011",
"Comment": "samba is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638012",
"Comment": "samba-client is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638013",
"Comment": "samba-common is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638014",
"Comment": "samba-common-libs is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638015",
"Comment": "samba-common-tools is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638016",
"Comment": "samba-ctdb is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638017",
"Comment": "samba-ctdb-tests is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638018",
"Comment": "samba-dc is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638019",
"Comment": "samba-dc-client is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638020",
"Comment": "samba-dc-libs is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638021",
"Comment": "samba-devel is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638022",
"Comment": "samba-doc is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638023",
"Comment": "samba-libs is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638024",
"Comment": "samba-pidl is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638025",
"Comment": "samba-test is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638026",
"Comment": "samba-util-private-headers is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638027",
"Comment": "samba-winbind is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638028",
"Comment": "samba-winbind-clients is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638029",
"Comment": "samba-winbind-krb5-locator is earlier than 0:4.10.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20191638030",
"Comment": "task-samba-dc is earlier than 0:4.10.2-alt1"
}
]
}
]
}
}
]
}
Reference in New Issue View Git Blame Copy Permalink