openEuler 20.03 LTS SP1 update for samba

1) Cleartext transmission of sensitive information

EUVDB-ID: #VU74177

Risk: Low

CVSSv4.0: 1.3 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-0922

CWE-ID: CWE-319 - Cleartext Transmission of Sensitive Information

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to samba-tool transmits credentials to the LDAP server in clear text. A remote attacker with ability to intercept network traffic can gain access to sensitive data.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP1

samba-vfs-glusterfs: before 4.11.12-28

samba-pidl: before 4.11.12-28

samba-common-tools: before 4.11.12-28

samba-debuginfo: before 4.11.12-28

libwbclient-devel: before 4.11.12-28

python3-samba: before 4.11.12-28

ctdb: before 4.11.12-28

samba-help: before 4.11.12-28

ctdb-tests: before 4.11.12-28

python3-samba-test: before 4.11.12-28

libsmbclient-devel: before 4.11.12-28

samba-dc: before 4.11.12-28

samba-test: before 4.11.12-28

samba-dc-provision: before 4.11.12-28

samba-dc-bind-dlz: before 4.11.12-28

python3-samba-dc: before 4.11.12-28

libsmbclient: before 4.11.12-28

samba-winbind-krb5-locator: before 4.11.12-28

samba-devel: before 4.11.12-28

samba-client: before 4.11.12-28

samba-common: before 4.11.12-28

samba-winbind-modules: before 4.11.12-28

samba-krb5-printing: before 4.11.12-28

samba-winbind-clients: before 4.11.12-28

samba-libs: before 4.11.12-28

samba-winbind: before 4.11.12-28

samba-debugsource: before 4.11.12-28

libwbclient: before 4.11.12-28

samba: before 4.11.12-28

CPE2.3

• cpe:2.3:o:openeuler:openeuler:20.03:LTS SP1:*:*:*:*:*:*
• cpe:2.3:o:openeuler:samba-vfs-glusterfs:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-pidl:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-common-tools:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-debuginfo:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:libwbclient-devel:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:python3-samba:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:ctdb:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-help:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:ctdb-tests:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:python3-samba-test:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:libsmbclient-devel:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-dc:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-test:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-dc-provision:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-dc-bind-dlz:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:python3-samba-dc:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:libsmbclient:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-winbind-krb5-locator:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-devel:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-client:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-common:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-winbind-modules:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-krb5-printing:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-winbind-clients:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-libs:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-winbind:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba-debugsource:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:libwbclient:*:*:*:*:*:openeuler:*:*
• cpe:2.3:o:openeuler:samba:*:*:*:*:*:openeuler:*:*

External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2023-1231

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.