[Samba] Latest Ubuntu 16.04 samba upgrade breaks external ldap auth (CVE-2020-10704)
Billy Bob
billysbobs at yahoo.com
Wed Apr 29 15:15:54 UTC 2020
There was a regression introduced with the last Samba update, which broke LDAP. Ubuntu has just released a fix.
See https://usn.ubuntu.com/4341-3/ for the advisory.
On Wednesday, April 29, 2020, 02:27:32 AM CDT, Lorenzo Milesi via samba <samba at lists.samba.org> wrote:
Latest Samba4 upgrade (4.3.11+dfsg-0ubuntu0.16.04.26) broke external LDAP auth probably with the following error:
LDAP request size (81) exceeds (0)
samba-tool outputs the following when ran:
Unknown parameter encountered: "ldap max anonymous request size"
Ignoring unknown parameter "ldap max anonymous request size"
Unknown parameter encountered: "ldap max authenticated request size"
Ignoring unknown parameter "ldap max authenticated request size"
Unknown parameter encountered: "ldap max search request size"
Ignoring unknown parameter "ldap max search request size"
These params aren't defined anywhere, and even if placed in smb.conf the error won't change.
Any workaround for this old version?
thanks
https://changelogs.ubuntu.com/changelogs/pool/main/s/samba/samba_4.3.11+dfsg-0ubuntu0.16.04.26/changelog
--
Lorenzo Milesi - lorenzo.milesi at yetopen.it
YetOpen S.r.l. - https://www.yetopen.it/
Via Salerno 18 - 23900 Lecco - ITALY -
Tel +39 0341 220 205 - Fax +39 178 6070 222
Think green - Non stampare questa e-mail se non necessario / Don't print this email unless necessary
-------- D.Lgs. 196/2003 e GDPR 679/2016 --------
Tutte le informazioni contenute in questo messaggio sono riservate ed a uso esclusivo del destinatario.
Tutte le informazioni ivi contenute, compresi eventuali allegati, sono da ritenere confidenziali e riservate secondo i termini
del vigente D.Lgs. 196/2003 in materia di privacy e del Regolamento europeo 679/2016 - GDPR - e quindi ne e' proibita l'utilizzazione ulteriore non autorizzata.
Nel caso in cui questo messaggio Le fosse pervenuto per errore, La invitiamo ad eliminarlo senza copiarlo, stamparlo, a non inoltrarlo a terzi e ad avvertirci non appena possibile.
Grazie.
Confidentiality notice: this email message including any attachment is for the sole use of the intended recipient and may contain confidential and privileged information;
pursuant to Legislative Decree 196/2003 and the European General Data Protection Regulation 679/2016 - GDPR - any unauthorized review, use, disclosure or distribution
is prohibited. If you are not the intended recepient please delete this message without copying, printing or forwarding it to others, and alert us as soon as possible.
Thank you.
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
More information about the samba
mailing list