{"id":"OESA-2023-1016","summary":"samba security update","details":"Samba is a suite of programs for Linux and Unix to interoperate with Windows.\r\n\r\nSecurity Fix(es):\r\n\r\nSince the Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability was disclosed by Microsoft on Nov 8 2022 and per RFC8429 it is assumed that rc4-hmac is weak, Vulnerable Samba Active Directory DCs will issue rc4-hmac encrypted tickets despite the target server supporting better encryption (eg aes256-cts-hmac-sha1-96).(CVE-2022-45141)","modified":"2026-03-11T06:29:11.145209Z","published":"2023-01-06T11:04:46Z","upstream":["CVE-2022-45141"],"database_specific":{"severity":"High"},"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2023-1016"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-45141"}],"affected":[{"package":{"name":"samba","ecosystem":"openEuler:20.03-LTS-SP1","purl":"pkg:rpm/openEuler/samba&distro=openEuler-20.03-LTS-SP1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.11.12-24.oe1"}]}],"ecosystem_specific":{"noarch":["samba-pidl-4.11.12-24.oe1.noarch.rpm"],"x86_64":["samba-winbind-clients-4.11.12-24.oe1.x86_64.rpm","samba-debugsource-4.11.12-24.oe1.x86_64.rpm","samba-libs-4.11.12-24.oe1.x86_64.rpm","samba-dc-bind-dlz-4.11.12-24.oe1.x86_64.rpm","python3-samba-4.11.12-24.oe1.x86_64.rpm","samba-dc-provision-4.11.12-24.oe1.x86_64.rpm","samba-krb5-printing-4.11.12-24.oe1.x86_64.rpm","samba-winbind-krb5-locator-4.11.12-24.oe1.x86_64.rpm","samba-client-4.11.12-24.oe1.x86_64.rpm","python3-samba-test-4.11.12-24.oe1.x86_64.rpm","samba-dc-4.11.12-24.oe1.x86_64.rpm","libwbclient-4.11.12-24.oe1.x86_64.rpm","ctdb-4.11.12-24.oe1.x86_64.rpm","samba-winbind-modules-4.11.12-24.oe1.x86_64.rpm","libsmbclient-4.11.12-24.oe1.x86_64.rpm","samba-debuginfo-4.11.12-24.oe1.x86_64.rpm","samba-winbind-4.11.12-24.oe1.x86_64.rpm","libsmbclient-devel-4.11.12-24.oe1.x86_64.rpm","samba-devel-4.11.12-24.oe1.x86_64.rpm","samba-4.11.12-24.oe1.x86_64.rpm","python3-samba-dc-4.11.12-24.oe1.x86_64.rpm","samba-vfs-glusterfs-4.11.12-24.oe1.x86_64.rpm","samba-help-4.11.12-24.oe1.x86_64.rpm","libwbclient-devel-4.11.12-24.oe1.x86_64.rpm","samba-test-4.11.12-24.oe1.x86_64.rpm","ctdb-tests-4.11.12-24.oe1.x86_64.rpm","samba-common-tools-4.11.12-24.oe1.x86_64.rpm","samba-common-4.11.12-24.oe1.x86_64.rpm"],"src":["samba-4.11.12-24.oe1.src.rpm"],"aarch64":["libsmbclient-devel-4.11.12-24.oe1.aarch64.rpm","samba-client-4.11.12-24.oe1.aarch64.rpm","samba-devel-4.11.12-24.oe1.aarch64.rpm","python3-samba-dc-4.11.12-24.oe1.aarch64.rpm","libwbclient-4.11.12-24.oe1.aarch64.rpm","ctdb-tests-4.11.12-24.oe1.aarch64.rpm","samba-winbind-modules-4.11.12-24.oe1.aarch64.rpm","samba-winbind-clients-4.11.12-24.oe1.aarch64.rpm","samba-4.11.12-24.oe1.aarch64.rpm","libsmbclient-4.11.12-24.oe1.aarch64.rpm","samba-common-4.11.12-24.oe1.aarch64.rpm","python3-samba-test-4.11.12-24.oe1.aarch64.rpm","ctdb-4.11.12-24.oe1.aarch64.rpm","samba-help-4.11.12-24.oe1.aarch64.rpm","samba-winbind-4.11.12-24.oe1.aarch64.rpm","python3-samba-4.11.12-24.oe1.aarch64.rpm","samba-krb5-printing-4.11.12-24.oe1.aarch64.rpm","samba-dc-provision-4.11.12-24.oe1.aarch64.rpm","samba-libs-4.11.12-24.oe1.aarch64.rpm","libwbclient-devel-4.11.12-24.oe1.aarch64.rpm","samba-winbind-krb5-locator-4.11.12-24.oe1.aarch64.rpm","samba-dc-4.11.12-24.oe1.aarch64.rpm","samba-debugsource-4.11.12-24.oe1.aarch64.rpm","samba-test-4.11.12-24.oe1.aarch64.rpm","samba-common-tools-4.11.12-24.oe1.aarch64.rpm","samba-dc-bind-dlz-4.11.12-24.oe1.aarch64.rpm","samba-debuginfo-4.11.12-24.oe1.aarch64.rpm"]},"database_specific":{"source":"https://repo.openeuler.org/security/data/osv/OESA-2023-1016.json"}}],"schema_version":"1.7.5"}