Bug 1213384 - Jul-2023 update of windows 10/11 breaks trust relationship
Summary: Jul-2023 update of windows 10/11 breaks trust relationship
Status: RESOLVED FIXED
Alias: None
Product: openSUSE Distribution
Classification: openSUSE
Component: Samba (show other bugs)
Version: Leap 15.5
Hardware: Other Other
: P5 - None : Major with 6 votes (vote)
Target Milestone: ---
Assignee: The 'Opening Windows to a Wider World' guys
QA Contact: The 'Opening Windows to a Wider World' guys
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2023-07-17 08:51 UTC by Noel Power
Modified: 2024-02-27 12:30 UTC (History)
3 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Noel Power 2023-07-17 08:51:00 UTC 
Reports of users getting errors like

"The trust relationship between this workstation and the primary domain failed."

have been reported upstream since applying updates KB5028166 / KB5028185.

this at least affects samba domain controllers (AD & PDC I believe) it also apparently can affect rdp access.

upstream bug https://bugzilla.samba.org/show_bug.cgi?id=15418
Comment 3 Kai Lappalainen 2023-07-18 19:16:44 UTC 
Same problem with Windows Server 2008 R2 (ESU 07/23 Rollup)
Comment 4 Maintenance Automation 2023-07-19 20:35:16 UTC 
SUSE-SU-2023:2888-1: An update that solves four vulnerabilities and has one fix can now be installed.

Category: security (important)
Bug References: 1213171, 1213172, 1213173, 1213174, 1213384
CVE References: CVE-2022-2127, CVE-2023-34966, CVE-2023-34967, CVE-2023-34968
Sources used:
SUSE Linux Enterprise Server for SAP Applications 12 SP5 (src): samba-4.15.13+git.621.c8ae836ff82-3.85.1
SUSE Linux Enterprise High Availability Extension 12 SP5 (src): samba-4.15.13+git.621.c8ae836ff82-3.85.1
SUSE Linux Enterprise Software Development Kit 12 SP5 (src): samba-4.15.13+git.621.c8ae836ff82-3.85.1
SUSE Linux Enterprise High Performance Computing 12 SP5 (src): samba-4.15.13+git.621.c8ae836ff82-3.85.1
SUSE Linux Enterprise Server 12 SP5 (src): samba-4.15.13+git.621.c8ae836ff82-3.85.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 5 Maintenance Automation 2023-07-19 20:35:19 UTC 
SUSE-SU-2023:2887-1: An update that solves one vulnerability and has one fix can now be installed.

Category: security (moderate)
Bug References: 1213174, 1213384
CVE References: CVE-2022-2127
Sources used:
SUSE OpenStack Cloud 9 (src): samba-4.6.16+git.393.97432483687-3.81.1
SUSE OpenStack Cloud Crowbar 9 (src): samba-4.6.16+git.393.97432483687-3.81.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4 (src): samba-4.6.16+git.393.97432483687-3.81.1
SUSE Linux Enterprise High Availability Extension 12 SP4 (src): samba-4.6.16+git.393.97432483687-3.81.1
SUSE Linux Enterprise Server 12 SP4 ESPOS 12-SP4 (src): samba-4.6.16+git.393.97432483687-3.81.1
SUSE Linux Enterprise Server 12 SP4 LTSS 12-SP4 (src): samba-4.6.16+git.393.97432483687-3.81.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 6 Maintenance Automation 2023-07-28 20:30:19 UTC 
SUSE-SU-2023:3017-1: An update that solves one vulnerability and has one fix can now be installed.

Category: security (moderate)
Bug References: 1213174, 1213384
CVE References: CVE-2022-2127
Sources used:
openSUSE Leap 15.4 (src): samba-4.9.5+git.564.996810ca1e3-150100.3.82.3
SUSE Linux Enterprise High Availability Extension 15 SP1 (src): samba-4.9.5+git.564.996810ca1e3-150100.3.82.3
SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 (src): samba-4.9.5+git.564.996810ca1e3-150100.3.82.3
SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 (src): samba-4.9.5+git.564.996810ca1e3-150100.3.82.3
SUSE Linux Enterprise Server for SAP Applications 15 SP1 (src): samba-4.9.5+git.564.996810ca1e3-150100.3.82.3
SUSE CaaS Platform 4.0 (src): samba-4.9.5+git.564.996810ca1e3-150100.3.82.3

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 7 Maintenance Automation 2023-07-31 12:30:14 UTC 
SUSE-SU-2023:3060-1: An update that solves four vulnerabilities and has one fix can now be installed.

Category: security (important)
Bug References: 1213171, 1213172, 1213173, 1213174, 1213384
CVE References: CVE-2022-2127, CVE-2023-34966, CVE-2023-34967, CVE-2023-34968
Sources used:
SUSE Enterprise Storage 7.1 (src): samba-4.15.13+git.663.9c654e06cdb-150300.3.57.5
SUSE Linux Enterprise Micro 5.2 (src): samba-4.15.13+git.663.9c654e06cdb-150300.3.57.5
SUSE Linux Enterprise Micro for Rancher 5.2 (src): samba-4.15.13+git.663.9c654e06cdb-150300.3.57.5
SUSE Linux Enterprise High Availability Extension 15 SP3 (src): samba-4.15.13+git.663.9c654e06cdb-150300.3.57.5
SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (src): samba-4.15.13+git.663.9c654e06cdb-150300.3.57.5
SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (src): samba-4.15.13+git.663.9c654e06cdb-150300.3.57.5
SUSE Linux Enterprise Real Time 15 SP3 (src): samba-4.15.13+git.663.9c654e06cdb-150300.3.57.5
SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (src): samba-4.15.13+git.663.9c654e06cdb-150300.3.57.5
SUSE Linux Enterprise Server for SAP Applications 15 SP3 (src): samba-4.15.13+git.663.9c654e06cdb-150300.3.57.5
SUSE Manager Proxy 4.2 (src): samba-4.15.13+git.663.9c654e06cdb-150300.3.57.5
SUSE Manager Retail Branch Server 4.2 (src): samba-4.15.13+git.663.9c654e06cdb-150300.3.57.5
SUSE Manager Server 4.2 (src): samba-4.15.13+git.663.9c654e06cdb-150300.3.57.5

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 8 Maintenance Automation 2023-07-31 16:30:12 UTC 
SUSE-SU-2023:3066-1: An update that solves four vulnerabilities and has one fix can now be installed.

Category: security (important)
Bug References: 1213171, 1213172, 1213173, 1213174, 1213384
CVE References: CVE-2022-2127, CVE-2023-34966, CVE-2023-34967, CVE-2023-34968
Sources used:
SUSE Enterprise Storage 7 (src): samba-4.13.13+git.643.8caa136952b-150200.3.26.3

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 9 Noel Power 2023-08-03 14:52:18 UTC 
released in maintained streams
Comment 10 Maintenance Automation 2023-08-18 12:30:03 UTC 
SUSE-SU-2023:3358-1: An update that solves one vulnerability and has one fix can now be installed.

Category: security (moderate)
Bug References: 1213174, 1213384
CVE References: CVE-2022-2127
Sources used:
openSUSE Leap 15.4 (src): samba-4.11.14+git.396.91f4f677472-150200.4.52.5
SUSE Linux Enterprise High Availability Extension 15 SP2 (src): samba-4.11.14+git.396.91f4f677472-150200.4.52.5
SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (src): samba-4.11.14+git.396.91f4f677472-150200.4.52.5
SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (src): samba-4.11.14+git.396.91f4f677472-150200.4.52.5
SUSE Linux Enterprise Server for SAP Applications 15 SP2 (src): samba-4.11.14+git.396.91f4f677472-150200.4.52.5
SUSE Enterprise Storage 7 (src): samba-4.11.14+git.396.91f4f677472-150200.4.52.5

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 13 Maintenance Automation 2024-02-27 12:30:30 UTC 
SUSE-SU-2023:2929-1: An update that solves six vulnerabilities and has two security fixes can now be installed.

Category: security (important)
Bug References: 1212375, 1213170, 1213171, 1213172, 1213173, 1213174, 1213384, 1213386
CVE References: CVE-2020-25720, CVE-2022-2127, CVE-2023-3347, CVE-2023-34966, CVE-2023-34967, CVE-2023-34968
Sources used:
openSUSE Leap 15.5 (src): samba-4.17.9+git.367.dae41ffdd1f-150500.3.5.1
Basesystem Module 15-SP5 (src): samba-4.17.9+git.367.dae41ffdd1f-150500.3.5.1
SUSE Linux Enterprise High Availability Extension 15 SP5 (src): samba-4.17.9+git.367.dae41ffdd1f-150500.3.5.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 14 Maintenance Automation 2024-02-27 12:30:33 UTC 
SUSE-SU-2023:2930-1: An update that solves four vulnerabilities and has one security fix can now be installed.

Category: security (important)
Bug References: 1213171, 1213172, 1213173, 1213174, 1213384
CVE References: CVE-2022-2127, CVE-2023-34966, CVE-2023-34967, CVE-2023-34968
Sources used:
openSUSE Leap 15.4 (src): samba-4.15.13+git.663.9c654e06cdb-150400.3.28.1
openSUSE Leap Micro 5.3 (src): samba-4.15.13+git.663.9c654e06cdb-150400.3.28.1
openSUSE Leap Micro 5.4 (src): samba-4.15.13+git.663.9c654e06cdb-150400.3.28.1
SUSE Linux Enterprise Micro for Rancher 5.3 (src): samba-4.15.13+git.663.9c654e06cdb-150400.3.28.1
SUSE Linux Enterprise Micro 5.3 (src): samba-4.15.13+git.663.9c654e06cdb-150400.3.28.1
SUSE Linux Enterprise Micro for Rancher 5.4 (src): samba-4.15.13+git.663.9c654e06cdb-150400.3.28.1
SUSE Linux Enterprise Micro 5.4 (src): samba-4.15.13+git.663.9c654e06cdb-150400.3.28.1
Basesystem Module 15-SP4 (src): samba-4.15.13+git.663.9c654e06cdb-150400.3.28.1
SUSE Linux Enterprise High Availability Extension 15 SP4 (src): samba-4.15.13+git.663.9c654e06cdb-150400.3.28.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.