Ãë¾àÁ¡ID |
23320 |
À§Çèµµ |
30 |
Æ÷Æ® |
139 |
ÇÁ·ÎÅäÄÝ |
TCP |
ºÐ·ù |
Samba |
»ó¼¼¼³¸í |
¿ø°Ý È£½ºÆ®¿¡¼ ½ÇÇàµÇ´Â SambaÀÇ ¹öÀüÀº 4.11.15 ÀÌÀüÀÇ 3.6.x, 4.12.9 ÀÌÀüÀÇ 4.12.x ¶Ç´Â 4.13.1 ÀÌÀüÀÇ 4.13.xÀÔ´Ï´Ù. µû¶ó¼ ´ÙÀ½°ú °°Àº ¿©·¯ Ãë¾àÁ¡ÀÇ ¿µÇâÀ» ¹ÞÀ» ¼ö ÀÖ½À´Ï´Ù.
-4.11.15 ÀÌÀü, 4.12.9 ÀÌÀü ¹× 4.13.1 ÀÌÀü ¹öÀü¿¡¼ »ï¹ÙÀÇ Winbind ¼ºñ½º¿¡¼ ³Î Æ÷ÀÎÅÍ ¿ª ÂüÁ¶ °áÇÔÀÌ ¹ß°ßµÇ¾ú½À´Ï´Ù. ·ÎÄà »ç¿ëÀÚ´Â ÀÌ °áÇÔÀ» »ç¿ëÇÏ¿© Winbind ¼ºñ½º¸¦ ÁߴܽÃÄÑ ¼ºñ½º °ÅºÎ¸¦ ÀÏÀ¸Å³ ¼ö ÀÖ½À´Ï´Ù. (CVE-2020-14323)
-µð·ºÅ丮 Çڵ鿡 ´ëÇÑ ±ÇÇÑ °Ë»ç°¡ ´©¶ôµÇ¸é ±ÇÇÑÀÌ ¾ø´Â °èÁ¤¿¡ ÆÄÀÏ À̸§ Á¤º¸°¡ À¯Ãâ µÉ ¼ö ÀÖ½À´Ï´Ù. (CVE-2020-14318)
-DNS ·¹ÄÚµå Ãß°¡ ¼½¼Ç¿¡ µ¥ÀÌÅÍ°¡ ¾ø´Â °æ¿ì SambaÀÇ dnsserver RPC ÆÄÀÌÇÁ¿¡ ¿À·ù°¡ ¹ß»ýÇÕ´Ï´Ù. °ü¸®ÀÚ°¡ ¾Æ´Ñ ÀÎÁõ µÈ »ç¿ëÀÚ´Â À̸¦ ¾Ç¿ëÇÏ¿© À߸øµÈ ·¹Äڵ带 Ãß°¡ÇÏ¿© DNS ¼¹ö¸¦ ¼Õ»ó½Ãų ¼ö ÀÖ½À´Ï´Ù. (CVE-2020-14383)
* Âü°í »çÀÌÆ®: https://www.samba.org/samba/security/CVE-2020-14383.html https://www.samba.org/samba/security/CVE-2020-14323.html https://www.samba.org/samba/security/CVE-2020-14318.html https://www.samba.org/samba/history/security.html
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû: Samba Project, Samba versions 4.12.9 ÀÌÀüÀÇ 4.12.x ¹öÀüµé Linux Any version Unix Any version |
ÇØ°áÃ¥ |
Samba À¥ »çÀÌÆ®ÀÎ https://www.samba.org/samba/download/¿¡¼ ±¸ÇÒ ¼ö ÀÖ´Â SambaÀÇ °¡Àå ÃֽŠ¹öÀü (4.12.9 ȤÀº ÀÌÈÄ ¹öÀü)À¸·Î ¾÷±×·¹À̵å ÇÏ¿©¾ß ÇÑ´Ù. |
°ü·Ã URL |
CVE-2020-14318,CVE-2020-14323,CVE-2020-14383 (CVE) |
°ü·Ã URL |
(SecurityFocus) |
°ü·Ã URL |
(ISS) |
|