search for: deslauri

Hi We have the one server SAMBA 4.3.11-ubuntu in Active Directory mode with some Windows Clients The Ubuntu repository not update samba package (last version is 4.3.11). Please, how am i can fix the CVE-2017-7494 (Remote code execution from a writable share) in my SAMBA server? Should option 'nt pipe support = no' will influence how SAMBA_AD works? Anderson Hoffmann

...s/kpv_temp/temp/kvmTest/dependencies/libmonitor/installDir/lib/libmonitor.so' ``` However, while running the domain, I get the following message of failure to preload the shared files in the log. ``` 2019-07-17 17:35:22.939+0000: starting up libvirt version: 1.3.1, package: 1ubuntu10.27 (Marc Deslauriers <marc.deslauriers@ubuntu.com> Tue, 02 Jul 2019 09:22:37 -0400), qemu version: 2.5.0 (Debian 1:2.5+dfsg-5ubuntu10.39), hostname: probir-XPS-13-9343 LC_ALL=C PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin QEMU_AUDIO_DRV=spice LD_PRELOAD=/home/probir/Downloads/kpv_temp/temp...

...Product: Portable OpenSSH Version: 9.3p1 Hardware: Other OS: Linux Status: NEW Severity: enhancement Priority: P5 Component: ssh-agent Assignee: unassigned-bugs at mindrot.org Reporter: marc.deslauriers at canonical.com Since the 29ef8a0486 commit for CVE-2023-28408, PKCS11Provider now requires libraries to be specified using their full path as the new code just opens the filename directly whereas the dlopen would search system library paths. This causes a change in behaviour for users. (See...

...monitor/installDir/lib/libmonitor.so' > > ``` > However, while running the domain, I get the following message of failure > to preload the shared files in the log. > > ``` > 2019-07-17 17:35:22.939+0000: starting up libvirt version: 1.3.1, package: > 1ubuntu10.27 (Marc Deslauriers <marc.deslauriers@ubuntu.com> Tue, 02 Jul > 2019 09:22:37 -0400), qemu version: 2.5.0 (Debian 1:2.5+dfsg-5ubuntu10.39), > hostname: probir-XPS-13-9343 > LC_ALL=C PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin > QEMU_AUDIO_DRV=spice > LD_PRELOAD=/home/probi...

...es. samba (2:4.3.11+dfsg-0ubuntu0.16.04.7) xenial-security; urgency=medium * SECURITY UPDATE: remote code execution from a writable share - debian/patches/CVE-2017-7494.patch: refuse to open pipe names with a slash inside in source3/rpc_server/srv_pipe.c. - CVE-2017-7494 -- Marc Deslauriers <marc.deslauriers at ubuntu.com> Fri, 19 May 2017 14:18:13 -0400 Mike E. On Thu, May 25, 2017 at 12:54 PM, Anderson Hoffmann do Carmo via samba < samba at lists.samba.org> wrote: > Hi > > We have the one server SAMBA 4.3.11-ubuntu in Active Directory mode with > some...

We have the same issue with Samba 4.13.17. For Ubuntu 20.04 with Samba 4.13.17 there seems to be only a workaround to solve the login problem: Modifying the Local Security Policy -> Local Policies -> Security Options -> Network security: "Configure encryption types allowed for Kerberos" Check only DES_CBC_CRC, DES_CBC_MD5 and RC4_HMAC_MD5. ? This worked for us to login again. ?

...debian/patches/win-22H2-fix.patch: split git-style > patch into three individual patches so that it can be manipulated > properly with quilt. * debian/patches/CVE-2022-44640-*.patch: > Heimdal issue that did not affect Samba, but patches included for > completeness. > -- Marc Deslauriers <marc.deslauriers at ubuntu.com> Wed, 11 Jan 2023 > 11:12:16 -0500On Thu, 2023-01-26 at 20:38 +0100, Frank Rochlitzer via > samba wrote: > > We have the same issue with Samba 4.13.17. > > For Ubuntu 20.04 with Samba 4.13.17 there seems to be only a > > workaround t...

...- debian/patches/CVE-2019-14847-3.patch: correct behaviour of >> ????? ranged_results when combined with dirsync in >> ????? source4/dsdb/samdb/ldb_modules/dirsync.c, >> ????? source4/dsdb/samdb/ldb_modules/ranged_results.c. >> ??? - CVE-2019-14847 >> >> ?-- Marc Deslauriers <marc.deslauriers at ubuntu.com>? Mon, 21 Oct 2019 >> 08:53:51 -0400 > > > I have Samba shares mounted to my Linux workstation. Mostly I access > files on the Samba server over the Samba mount. I use mount.cifs to > bring up these mounts. > > For a couple of...

...on/dirsync.py. > - debian/patches/CVE-2019-14847-3.patch: correct behaviour of > ranged_results when combined with dirsync in > source4/dsdb/samdb/ldb_modules/dirsync.c, > source4/dsdb/samdb/ldb_modules/ranged_results.c. > - CVE-2019-14847 > > -- Marc Deslauriers <marc.deslauriers at ubuntu.com> Mon, 21 Oct 2019 08:53:51 -0400 I have Samba shares mounted to my Linux workstation. Mostly I access files on the Samba server over the Samba mount. I use mount.cifs to bring up these mounts. For a couple of special cases, I use scp to transfer files b...

Hi, In November, upstream released RHSA-2007:1016-4 containing critical samba updates for v4. I see the CentOS released packages and announcement for ia64, but none for i386 or x86_64. Were they overlooked? Am I not looking right? Thanks! Marc.

Hi all! I found this today on FD: http://seclists.org/fulldisclosure/2012/Aug/4

Dear all, Actually, I want to create my own test-bed based on xen hypervisor with centos prefered. However, all I have is one desktop (with a good hardware performance). So it possible to have a dual-boot (a linux for daily use and the other for the test-bed) ? Regards -- Jihed M’SELMI http://about.me/jihed.mselmi _______________________________________________ Xen-users mailing list