{"id":12734,"date":"2016-04-26T17:00:39","date_gmt":"2016-04-26T09:00:39","guid":{"rendered":"https:\/\/www.deepin.org\/?p=9814"},"modified":"2017-08-31T10:41:35","modified_gmt":"2017-08-31T02:41:35","slug":"security-updates%ef%bc%88dsa-3548-1-dsa-3549-1-dsa-3550-1%ef%bc%89","status":"publish","type":"post","link":"https:\/\/www.deepin.org.cn\/zh\/security-updates%ef%bc%88dsa-3548-1-dsa-3549-1-dsa-3550-1%ef%bc%89\/","title":{"rendered":"\u5b89\u5168\u66f4\u65b0\uff08DSA-3548-1 &#038;DSA-3549-1 &#038;DSA-3550-1\uff09"},"content":{"rendered":"\u6b64\u6b21\u5b89\u5168\u6f0f\u6d1e\u66f4\u65b0\u5305\u62ecsamba\u3001chromium-browser\u548copenssh\u66f4\u65b0\u3002<\/p>\n<p>&nbsp;<\/p>\n<h2>\u6f0f\u6d1e\u6982\u8ff0<\/h2>\n<p><strong>DSA-3548-1 samba\u2014 \u5b89\u5168\u66f4\u65b0<\/strong><\/p>\n<p>\u5b89\u5168\u6570\u636e\u5e93\u8be6\u7ec6\u4fe1\u606f\uff1a<\/p>\n<ul>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2015-5370\">CVE-2015-5370<\/a>\uff1a\u5728DCE-RPC\u4ee3\u7801\u4e2d\u5b58\u5728\u6f0f\u6d1e\uff0c\u6b64\u6f0f\u6d1e\u53ef\u5bfc\u81f4\u670d\u52a1\u62d2\u7edd\uff08\u5d29\u6e83\u548c\u9ad8CPU\u6d88\u8017\uff09\u548c\u4e2d\u95f4\u4eba\u653b\u51fb\u3002<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-2110\">CVE-2016-2110<\/a>\uff1aNTLMSSP\u7684\u529f\u80fd\u534f\u5546\u4e0d\u80fd\u9632\u6b62\u964d\u7ea7\u653b\u51fb\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-2111\">CVE-2016-2111<\/a>\uff1a\u5f53Samba\u7684\u914d\u7f6e\u4e3a\u57df\u63a7\u5236\u5668\uff0c\u5b83\u5141\u8bb8\u8fdc\u7a0b\u653b\u51fb\u8005\u6b3a\u9a97\u7684\u5b89\u5168\u901a\u9053\u5bf9\u7aef\u7684\u8ba1\u7b97\u673a\u540d\uff0c\u5e76\u83b7\u53d6\u654f\u611f\u7684\u4f1a\u8bdd\u4fe1\u606f\u3002\u8fd9\u4e2a\u7f3a\u9677\u5bf9\u5e94\u4e8ewindows\u4e0b\u7684CVE-2015-0005\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-2112\" target=\"_blank\">CVE-2016-2112<\/a>\uff1a\u4e00\u4e2a\u53ef\u4ee5\u964d\u7ea7LDAP\u4e2d\u95f4\u4eba\u653b\u51fb\u8fde\u63a5\uff0c\u53ef\u4ee5\u907f\u514d\u5b8c\u6574\u6027\u4fdd\u62a4\u7684\u9a8c\u8bc1\u7684\u6f0f\u6d1e\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-2113\" target=\"_blank\">CVE-2016-2113<\/a>\uff1a\u53ef\u80fd\u7531LDAP\u8fde\u63a5\u548cncacn_http\u8fde\u63a5\u7684\u5ba2\u6237\u7aef\u4e2d\u95f4\u4eba\u653b\u51fb\u95ee\u9898\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-2114\" target=\"_blank\">CVE-2016-2114<\/a>\uff1aSamba\u5728\u5373\u4f7f\u660e\u786e\u914d\u7f6e\u4e86SMB\u7b7e\u540d\uff0c\u4e5f\u4e0d\u5f3a\u5236\u8981\u6c42SMB\u7b7e\u540d\u7684\u95ee\u9898\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-2115\" target=\"_blank\">CVE-2016-2115<\/a>\uff1a\u5bf9\u4e8eIPC\u4f20\u8f93\u7684SMB\u8fde\u63a5\u6ca1\u6709\u5b8c\u6574\u6027\u4fdd\u62a4\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-2118\" target=\"_blank\">CVE-2016-2118<\/a>\uff1a\u4e00\u4e2a\u4e2d\u95f4\u4eba\u653b\u51fb\uff0c\u53ef\u4ee5\u6a21\u62df\u5ba2\u6237\u7aef\u5e76\u83b7\u5f97\u76f8\u540c\u7684\u6743\u9650\u9a8c\u8bc1\u7684\u7528\u6237\u5e10\u6237\u7684\u5ba2\u6237\u7aef\u548c\u670d\u52a1\u5668\u95f4\u7684\u4efb\u4f55DCERPC\u6d41\u91cf\u3002<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p><strong>DSA-3549-1 chromium-browser \u2014 \u5b89\u5168\u66f4\u65b0<\/strong><\/p>\n<p>\u5b89\u5168\u6570\u636e\u5e93\u8be6\u7ec6\u4fe1\u606f\uff1a<\/p>\n<ul>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-1651\">CVE-2016-1651<\/a>: \u5728pdfium\u5e93\u4e2d\u53d1\u73b0\u4e00\u4e2a\u8bfb\u53d6\u8d85\u754c\u7684\u95ee\u9898\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-1652\" target=\"_blank\">CVE-2016-1652<\/a>: \u5728\u6269\u5c55\u7ed1\u5b9a\u4e2d\u5b58\u5728\u4e00\u4e2a\u8de8\u7ad9\u70b9\u811a\u672c\u7684\u95ee\u9898\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-1653\" target=\"_blank\">CVE-2016-1653<\/a>: \u5728V8 javascript\u5e93\u4e2d\u53d1\u73b0\u4e00\u4e2a\u5199\u8d85\u754c\u7684\u95ee\u9898\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-1654\" target=\"_blank\">CVE-2016-1654<\/a>: \u4e00\u4e2a\u6ca1\u6709\u521d\u59cb\u5316\u7684\u5185\u5b58\u8bfb\u53d6\u95ee\u9898\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-1655\" target=\"_blank\">CVE-2016-1655<\/a>: \u4e0e\u6269\u5c55\u76f8\u5173\u7684\u4e00\u4e2a\u4f7f\u7528\u540e\u91ca\u653e\u8d44\u6e90\u7684\u95ee\u9898\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-1657\" target=\"_blank\">CVE-2016-1657<\/a>: \u4e00\u79cd\u6b3a\u9a97URL\u7684\u6f0f\u6d1e\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-1658\" target=\"_blank\">CVE-2016-1658<\/a>: \u4e0e\u6269\u5c55\u76f8\u5173\u7684\u4e00\u4e2a\u4fe1\u606f\u6cc4\u6f0f\u7684\u95ee\u9898\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-1659\" target=\"_blank\">CVE-2016-1659<\/a>: chrome\u5f00\u53d1\u56e2\u961f\u5728\u5185\u90e8\u5ba1\u8ba1\u65f6\u53d1\u73b0\u7684\u4e0d\u540c\u79cd\u7c7b\u7684\u95ee\u9898\u7684\u4fee\u590d\u3002<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p><strong>DSA-3550-1 openssh\u2014 \u5b89\u5168\u66f4\u65b0<\/strong><\/p>\n<p>\u5b89\u5168\u6570\u636e\u5e93\u8be6\u7ec6\u4fe1\u606f\uff1a<\/p>\n<ul>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2015-8325\" target=\"_blank\">CVE-2015-8325<\/a>\uff1a\u5982\u679cPAM\u652f\u6301\u5f00\u542f\u7684\u60c5\u51b5\u4e0b\uff0csshd\u7684PAM\u914d\u7f6e\u5df2\u7ecf\u8fdb\u884c\u4e86\u53ef\u4ee5\u8bfb\u53d6\u7528\u6237\u7a7a\u95f4\u7684\u73af\u5883\u53d8\u91cf\u914d\u7f6e\u53caUseLogin\u9009\u9879\u4e5f\u662f\u5f00\u542f\u7684\u60c5\u51b5\u4e0b\uff0c\u672c\u5730\u7528\u6237\u53ef\u4ee5\u5347\u7ea7\u5230root\u6743\u9650\u7684\u5b89\u5168\u6f0f\u6d1e\u3002<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<h2>\u4fee\u590d\u60c5\u51b5<\/h2>\n<p>samba\u7684\u5b89\u5168\u6f0f\u6d1e\u57282:4.3.7+dfsg-1\u7248\u672c\u4e2d\u8fdb\u884c\u4e86\u4fee\u590d\uff1bchromium-browser\u7684\u5b89\u5168\u6f0f\u6d1e\u572850.0.2661.75-1\u7248\u672c\u4e2d\u8fdb\u884c\u4e86\u4fee\u590d\uff1bopenssh\u7684\u5b89\u5168\u6f0f\u6d1e\u57281:7.2p2-3\u7248\u672c\u4e2d\u8fdb\u884c\u4e86\u4fee\u590d\u3002<\/p>\n<p>\u8bf7\u5404\u4f4d\u5c3d\u5feb\u66f4\u65b0\u7cfb\u7edf\u4ee5\u83b7\u53d6\u6f0f\u6d1e\u4fee\u590d\u8865\u4e01\u3002","protected":false},"excerpt":{"rendered":"<p>\u6b64\u6b21\u5b89\u5168\u6f0f\u6d1e\u66f4\u65b0\u5305\u62ecsamba\u3001chromium-browser\u548copenssh\u66f4\u65b0\u3002 &nbsp; \u6f0f\u6d1e\u6982\u8ff0 DSA-3548-1 samba\u2014 \u5b89\u5168\u66f4\u65b0 \u5b89\u5168\u6570\u636e\u5e93\u8be6\u7ec6\u4fe1\u606f\uff1a CVE-2015-5370\uff1a\u5728DCE-RPC\u4ee3\u7801\u4e2d\u5b58\u5728\u6f0f\u6d1e\uff0c\u6b64\u6f0f\u6d1e\u53ef\u5bfc\u81f4\u670d\u52a1\u62d2\u7edd\uff08\u5d29\u6e83\u548c\u9ad8CPU\u6d88\u8017\uff09\u548c\u4e2d\u95f4\u4eba\u653b\u51fb\u3002 CVE-2016-2110\uff1aNTLMSSP\u7684\u529f\u80fd\u534f\u5546\u4e0d\u80fd\u9632\u6b62\u964d\u7ea7\u653b\u51fb\uff1b CVE-2016-2111\uff1a\u5f53 ...<a href=https:\/\/www.deepin.org.cn\/zh\/security-updates%ef%bc%88dsa-3548-1-dsa-3549-1-dsa-3550-1%ef%bc%89\/>\u9605\u8bfb\u66f4\u591a<\/a><\/p>\n","protected":false},"author":1,"featured_media":12741,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[75],"tags":[],"_links":{"self":[{"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/posts\/12734"}],"collection":[{"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/comments?post=12734"}],"version-history":[{"count":9,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/posts\/12734\/revisions"}],"predecessor-version":[{"id":25288,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/posts\/12734\/revisions\/25288"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/media?parent=12734"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/categories?post=12734"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/tags?post=12734"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}