SUSE Addresses "ZeroLogon" Vulnerability | SUSE Communities
< Back to Blog

SUSE Addresses “ZeroLogon” Vulnerability

September 17, 2020 | By: Marcus Meissner

Share
Share

On September 11, Secura research published a new software vulnerability called “ZeroLogon”, which exploits a protocol weakness in the SMB Netlogon protocol. This vulnerability may affect users of SUSE Linux Enterprise Server running Samba servers in older or non-standard configurations. Attackers could use it to bypass access control to the domain controller.

A workaround mitigation is available now. Please ensure your Samba configuration file /etc/samba/smb.conf contains the line server schannel = yes in the [global] section.

This is the default configuration for Samba 4.8 and up (latest is 4.12). Please restart the server if necessary, with “sudo service smb restart”.

We are releasing fixes and updates to all affected versions to eliminate the exploit potential. Fixes for SUSE Linux Enterprise Server 12 and later will be issued in the next days. Along with additional technical details, they will be available here:

If you have any questions or concerns, please reach out to your SUSE contact. Security and reliability continue to be top priorities for SUSE because they are top priorities for our customers and partners. And as always, customers and partners come first.

Share

Related Articles

Jul 28th, 2023

Step by Step instructions for building a Multiple Architecture openSUSE Leap PXE Server

Aug 04th, 2023

CentOS Alternatives: Migrating Workloads From CentOS To OpenSUSE Leap – Automating With Ansible Part 1

May 31st, 2022

HTML on documentation.suse.com – Shape it up!

Oct 17th, 2022

SUSE Rancher RKE 2 is validated with SAP Data Intelligence 3.3

Leave a Reply

Your email address will not be published. Required fields are marked *

No comments yet

Avatar photo
5,473 views
Marcus Meissner
Back

IT Modernization


SAP Solutions


AI and Analytics


Hybrid Cloud Solutions


Nonstop IT


Exit Federal Government

Back

Business-Critical Linux

Enterprise Container Management

Edge

All Products
Back

Solutions

Hybrid Cloud IT
Business-critical Linux

Run & secure cloud and on-prem workloads
Run SAP
Run SAP

Deliver mission-critical SAP solutions
Enterprise Container Management
Enterprise Container Management

Orchestrate cloud-native apps
IT Operations at the Edge
Edge

Deploy intelligent devices to the edge
Public Cloud
SUSE for Public Cloud

Accelerate innovation across your clouds
Security
Security

Secure your digital enterprise

Industries

Back

Support

Product Support
Premium Support Services

Dedicated support services from a premium team


Long Term Service Support

Stay on your existing product version


Renew Your Support Subscription

Services

Consulting Services
Training & Certification
Premium Technical Advisory Services

Resources

SUSE Support User Guide
Patches & Updates
Product Documentation
Knowledgebase
SUSE Customer Center
Product Support Life Cycle
Licensing
Package Hub

Community packages for SUSE Linux Enterprise Server


Driver Search
Support Forums
Developer Services
Beta Program
Security
Back

Partners

Partner Program


Find a Partner


Become a Partner


Login to the SUSE Partner Portal

Back

Communities

Community

Blog


Forum


Open Source Projects


openSUSE.org



SUSE Polska

Back

About

About Us


Leadership


Careers


Newsroom


Success Stories


Investor Relations


Social Impact


SUSE Logo and Brand


Events & Webinars


Merchandise Store


Communications Preferences