Mailinglist Archive: opensuse-bugs (4283 mails)

< Previous Next >
[Bug 1036283] EMU: samba: fix for CVE-2017-2619 causes regression with "follow symlinks = no"
  • From: bugzilla_noreply@xxxxxxxxxx
  • Date: Fri, 05 May 2017 16:23:42 +0000
  • Message-id: <bug-1036283-21960-Abb1Pd2sLZ@http.bugzilla.suse.com/>
http://bugzilla.suse.com/show_bug.cgi?id=1036283
http://bugzilla.suse.com/show_bug.cgi?id=1036283#c9

--- Comment #9 from Noel Power <nopower@xxxxxxxx> ---
(In reply to Noel Power from comment #7)
(In reply to Peter Simons from comment #6)
(In reply to Panagiotis Georgiadis from comment #5)
Do we have a reproducer? In case of 'yes', could you please provide the
required steps?

The respective first message of
https://bugzilla.samba.org/show_bug.cgi?id=12721 and
https://bugzilla.redhat.com/show_bug.cgi?id=1436145 describe how users
produced the issue on their servers. Unfortunately, the information given is
not very detailed and I'm not sure it's obvious to everyone how to translate
into concrete steps. It's certainly not obvious to me. Maybe the package
maintainer can help?

No, it's not clear to me either, however the patches ported contain a test
(only runnable from a dev build) and I ran that test succsessfully. I'll
have a play with it again tomorrow to see if I can get a simple reporducer

sorry for the delay, I had difficulty getting the reproducer to work due to a
typo which resulted in much time wasting :-(.
It's actually simple enough to test this

without patch/fix but with up to date samba containing fix for CVE-2017-2619;

a) set up a simple standalone fileserver
b) create a local user to access the share (e.g. smbpasswd -a localuser)
c) create a share, create a subdirectiory (eg. dir1) in the share (make sure
the permissions are such that other users can create directories)
d) add 'follow symlinks = now' param (restart smbd)
e) try and create a sub dir via

smbclient -Ulocaluser%passwd //localhost/sharename -c 'mkdir dir1\dir2'

it should fail with 'NT_STATUS_NOT_SUPPORTED making remote directory dir1\dir2'

update with new samba with regression fix, repeat step 'e)' above and

this should succeed

--
You are receiving this mail because:
You are on the CC list for the bug.
< Previous Next >