Fedora Linux 8783 Published by

A samba security update has been released for Fedora 31



--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2019-be98a08835
2019-12-12 01:53:43.055751
--------------------------------------------------------------------------------

Name : samba
Product : Fedora 31
Version : 4.11.3
Release : 0.fc31
URL : https://www.samba.org
Summary : Server and Client software to interoperate with Windows machines
Description :
Samba is the standard Windows interoperability suite of programs for Linux and
Unix.

--------------------------------------------------------------------------------
Update Information:

Update to Samba 4.11.3 - Security fixes for CVE-2019-14861, CVE-2019-14870 ----
Restart winbindd on samba-winbind package upgrade
--------------------------------------------------------------------------------
ChangeLog:

* Tue Dec 10 2019 Guenther Deschner - 4.11.3-0
- Update to Samba 4.11.3
- resolves: #1778586, #1781542 - Security fixes for CVE-2019-14861
- resolves: #1778589, #1781545 - Security fixes for CVE-2019-14870
* Thu Dec 5 2019 Andreas Schneider - 4.11.2-2
- Restart winbindd on samba-winbind package upgrade
* Wed Nov 6 2019 Alexander Bokovoy - 4.11.2-1
- Update DES removal patch
* Tue Oct 29 2019 Guenther Deschner - 4.11.2-0
- Update to Samba 4.11.2
- resolves: #1763137, #1766558 - Security fixes for CVE-2019-10218
- resolves: #1764126, #1766559 - Security fixes for CVE-2019-14833
* Sun Oct 27 2019 Alexander Bokovoy - 4.11.1-1
- resolves: #1757071 - Deploy new samba DC fails
* Fri Oct 18 2019 Guenther Deschner - 4.11.1-0
- Update to Samba 4.11.1
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #1778586 - CVE-2019-14861 samba: An authenticated user can crash the DCE/RPC DNS management server by creating records with matching the zone name
https://bugzilla.redhat.com/show_bug.cgi?id=1778586
[ 2 ] Bug #1778589 - CVE-2019-14870 samba: The DelegationNotAllowed Kerberos feature restriction was not being applied when processing protocol transition requests (S4U2Self), in the AD DC KDC
https://bugzilla.redhat.com/show_bug.cgi?id=1778589
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-be98a08835' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys