Oval Definition:oval:org.opensuse.security:def:2680
Revision Date:2020-12-02Version:1
Title:Security update for samba (Important)
Description:

This update for samba fixes the following issues:

Security issue fixed:

- CVE-2019-3880: Fixed a path/symlink traversal vulnerability, which allowed an unprivileged user to save registry files outside a share (bsc#1131060).



ldb was updated to version 1.2.4 (bsc#1125410 bsc#1131686):

- Out of bound read in ldb_wildcard_compare - Hold at most 10 outstanding paged result cookies - Put 'results_store' into a doubly linked list - Refuse to build Samba against a newer minor version of ldb



Non-security issues fixed:

- Fixed update-apparmor-samba-profile script after apparmor switched to using named profiles (bsc#1126377). - Abide to the load_printers parameter in smb.conf (bsc#1124223). - Provide the 32bit samba winbind PAM module and its dependend 32bit libraries.
Family:unixClass:patch
Status:Reference(s):1027282
1029377
1029902
1040164
1042670
1070853
1079761
1081750
1083507
1084645
1086001
1086613
1088004
1088009
1088573
1094814
1096748
1099162
1099358
1101262
1105435
1107030
1109663
1109847
1110194
1111177
1114407
1114567
1120470
1120502
1120503
1120504
1120584
1120589
1120610
1120644
1122191
1124223
1125410
1126377
1129124
1129346
1130496
1130840
1131060
1131686
1133452
1136440
1137942
1138459
1140709
1141853
1142988
1144363
1149121
1149792
1149955
1151488
1151490
1153095
1153238
1153245
1154092
1154401
1156188
1158095
1159035
1159622
1160968
637176
658604
673071
709442
743787
747125
751718
754447
754677
787526
809831
831629
834601
871152
885662
885882
917607
942751
951166
983582
984751
985177
985348
989523
CVE-2011-3389
CVE-2011-4944
CVE-2012-0845
CVE-2012-1150
CVE-2013-1752
CVE-2013-4238
CVE-2014-2667
CVE-2014-4650
CVE-2016-0772
CVE-2016-1000110
CVE-2016-5636
CVE-2016-5699
CVE-2017-18207
CVE-2018-1000654
CVE-2018-1000802
CVE-2018-1060
CVE-2018-1061
CVE-2018-10861
CVE-2018-1128
CVE-2018-1129
CVE-2018-14647
CVE-2018-14662
CVE-2018-16846
CVE-2018-18384
CVE-2018-20406
CVE-2018-20482
CVE-2018-20544
CVE-2018-20545
CVE-2018-20546
CVE-2018-20547
CVE-2018-20548
CVE-2018-20549
CVE-2018-20852
CVE-2019-0816
CVE-2019-10160
CVE-2019-12838
CVE-2019-14889
CVE-2019-15903
CVE-2019-16056
CVE-2019-16935
CVE-2019-18804
CVE-2019-3880
CVE-2019-5010
CVE-2019-9636
CVE-2019-9923
CVE-2019-9947
CVE-2020-2583
CVE-2020-2590
CVE-2020-2593
CVE-2020-2601
CVE-2020-2604
CVE-2020-2654
CVE-2020-2655
CVE-2020-2659
SUSE-SU-2019:0586-1
SUSE-SU-2019:0707-1
SUSE-SU-2019:0770-1
SUSE-SU-2019:0926-1
SUSE-SU-2019:1040-1
SUSE-SU-2019:1372-1
SUSE-SU-2019:2989-1
SUSE-SU-2019:3033-1
SUSE-SU-2019:3097-1
SUSE-SU-2019:3293-1
SUSE-SU-2020:0114-1
SUSE-SU-2020:0213-1
SUSE-SU-2020:0231-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Availability 15 SP1
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Public Cloud 15
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • avahi-0.6.31-20 is installed
  • OR avahi-lang-0.6.31-20 is installed
  • OR libavahi-client3-0.6.31-20 is installed
  • OR libavahi-client3-32bit-0.6.31-20 is installed
  • OR libavahi-common3-0.6.31-20 is installed
  • OR libavahi-common3-32bit-0.6.31-20 is installed
  • OR libavahi-core7-0.6.31-20 is installed
  • OR libdns_sd-0.6.31-20 is installed
  • OR libdns_sd-32bit-0.6.31-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND binutils-2.25.0-13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • MozillaFirefox-45.6.0esr-96 is installed
  • OR MozillaFirefox-translations-45.6.0esr-96 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libsoup-2_4-1-2.62.2-5.7 is installed
  • OR libsoup-2_4-1-32bit-2.62.2-5.7 is installed
  • OR libsoup-lang-2.62.2-5.7 is installed
  • OR typelib-1_0-Soup-2_4-2.62.2-5.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.4.21-69 is installed
  • OR cluster-network-kmp-default-4.4.21-69 is installed
  • OR dlm-kmp-default-4.4.21-69 is installed
  • OR gfs2-kmp-default-4.4.21-69 is installed
  • OR ocfs2-kmp-default-4.4.21-69 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND python-requests-2.8.1-6.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-94.41 is installed
  • OR dlm-kmp-default-4.12.14-94.41 is installed
  • OR gfs2-kmp-default-4.12.14-94.41 is installed
  • OR ocfs2-kmp-default-4.12.14-94.41 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-25.3 is installed
  • OR dlm-kmp-default-4.12.14-25.3 is installed
  • OR gfs2-kmp-default-4.12.14-25.3 is installed
  • OR kernel-default-4.12.14-25.3 is installed
  • OR ocfs2-kmp-default-4.12.14-25.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP1 is installed
  • AND Package Information
  • ctdb-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR samba-4.9.5+git.176.375e1f05788-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • graphviz-addons-2.40.1-6.3 is installed
  • OR graphviz-gnome-2.40.1-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND facter-2.0.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 12 is installed
  • AND docker-1.6.2-31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • avahi-0.6.32-5.5 is installed
  • OR avahi-autoipd-0.6.32-5.5 is installed
  • OR avahi-glib2-0.6.32-5.5 is installed
  • OR avahi-utils-gtk-0.6.32-5.5 is installed
  • OR cups-2.2.7-3.11 is installed
  • OR gnutls-3.6.2-6.5 is installed
  • OR libavahi-client3-32bit-0.6.32-5.5 is installed
  • OR libavahi-common3-32bit-0.6.32-5.5 is installed
  • OR libavahi-gobject-devel-0.6.32-5.5 is installed
  • OR libcups2-32bit-2.2.7-3.11 is installed
  • OR libgnutls30-32bit-3.6.2-6.5 is installed
  • OR libhogweed4-32bit-3.4.1-4.9 is installed
  • OR libnettle-3.4.1-4.9 is installed
  • OR libnettle6-32bit-3.4.1-4.9 is installed
  • OR libp11-kit0-32bit-0.23.2-4.2 is installed
  • OR libtasn1-4.13-4.2 is installed
  • OR libtasn1-6-32bit-4.13-4.2 is installed
  • OR p11-kit-0.23.2-4.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 is installed
  • AND Package Information
  • libpmi0-17.11.7-6.3 is installed
  • OR libslurm32-17.11.7-6.3 is installed
  • OR perl-slurm-17.11.7-6.3 is installed
  • OR slurm-17.11.7-6.3 is installed
  • OR slurm-auth-none-17.11.7-6.3 is installed
  • OR slurm-config-17.11.7-6.3 is installed
  • OR slurm-devel-17.11.7-6.3 is installed
  • OR slurm-doc-17.11.7-6.3 is installed
  • OR slurm-lua-17.11.7-6.3 is installed
  • OR slurm-munge-17.11.7-6.3 is installed
  • OR slurm-node-17.11.7-6.3 is installed
  • OR slurm-pam_slurm-17.11.7-6.3 is installed
  • OR slurm-plugins-17.11.7-6.3 is installed
  • OR slurm-slurmdbd-17.11.7-6.3 is installed
  • OR slurm-sql-17.11.7-6.3 is installed
  • OR slurm-torque-17.11.7-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed
  • AND Package Information
  • libslurm32-17.11.13-6.23 is installed
  • OR slurm-17.11.13-6.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • java-1_6_0-ibm-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-fonts-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-jdbc-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-plugin-1.6.0_sr16.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • libopenssl-1_0_0-devel-1.0.2n-3.3 is installed
  • OR libopenssl1_0_0-1.0.2n-3.3 is installed
  • OR openssl-1_0_0-1.0.2n-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.35-3.20 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.35-3.20 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.35-3.20 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.35-3.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.13 is installed
  • OR kernel-default-livepatch-4.12.14-25.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_4-default-5-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_1-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • slurm-17.11.13-6.18 is installed
  • OR slurm-openlava-17.11.13-6.18 is installed
  • OR slurm-seff-17.11.13-6.18 is installed
  • OR slurm-sjstat-17.11.13-6.18 is installed
  • OR slurm-sview-17.11.13-6.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • containerd-1.2.5-5.13 is installed
  • OR containerd-ctr-1.2.5-5.13 is installed
  • OR containerd-test-1.2.5-5.13 is installed
  • OR docker-18.09.6_ce-6.17 is installed
  • OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed
  • OR docker-runc-test-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed
  • OR docker-test-18.09.6_ce-6.17 is installed
  • OR docker-zsh-completion-18.09.6_ce-6.17 is installed
  • OR go-1.12-3.10 is installed
  • OR go-doc-1.12-3.10 is installed
  • OR go-race-1.12-3.10 is installed
  • OR go1.11-1.11.9-1.12 is installed
  • OR go1.11-doc-1.11.9-1.12 is installed
  • OR go1.11-race-1.11.9-1.12 is installed
  • OR go1.12-1.12.4-1.9 is installed
  • OR go1.12-doc-1.12.4-1.9 is installed
  • OR go1.12-race-1.12.4-1.9 is installed
  • OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • cups-2.2.7-3.17 is installed
  • OR cups-devel-32bit-2.2.7-3.17 is installed
  • OR libcupscgi1-32bit-2.2.7-3.17 is installed
  • OR libcupsimage2-32bit-2.2.7-3.17 is installed
  • OR libcupsmime1-32bit-2.2.7-3.17 is installed
  • OR libcupsppdc1-32bit-2.2.7-3.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 is installed
  • AND python-azure-agent-2.2.36-7.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND apache2-mod_wsgi-4.4.13-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-4.12 is installed
  • OR php7-7.2.5-4.12 is installed
  • OR php7-bcmath-7.2.5-4.12 is installed
  • OR php7-bz2-7.2.5-4.12 is installed
  • OR php7-calendar-7.2.5-4.12 is installed
  • OR php7-ctype-7.2.5-4.12 is installed
  • OR php7-curl-7.2.5-4.12 is installed
  • OR php7-dba-7.2.5-4.12 is installed
  • OR php7-devel-7.2.5-4.12 is installed
  • OR php7-dom-7.2.5-4.12 is installed
  • OR php7-enchant-7.2.5-4.12 is installed
  • OR php7-exif-7.2.5-4.12 is installed
  • OR php7-fastcgi-7.2.5-4.12 is installed
  • OR php7-fileinfo-7.2.5-4.12 is installed
  • OR php7-fpm-7.2.5-4.12 is installed
  • OR php7-ftp-7.2.5-4.12 is installed
  • OR php7-gd-7.2.5-4.12 is installed
  • OR php7-gettext-7.2.5-4.12 is installed
  • OR php7-gmp-7.2.5-4.12 is installed
  • OR php7-iconv-7.2.5-4.12 is installed
  • OR php7-intl-7.2.5-4.12 is installed
  • OR php7-json-7.2.5-4.12 is installed
  • OR php7-ldap-7.2.5-4.12 is installed
  • OR php7-mbstring-7.2.5-4.12 is installed
  • OR php7-mysql-7.2.5-4.12 is installed
  • OR php7-odbc-7.2.5-4.12 is installed
  • OR php7-opcache-7.2.5-4.12 is installed
  • OR php7-openssl-7.2.5-4.12 is installed
  • OR php7-pcntl-7.2.5-4.12 is installed
  • OR php7-pdo-7.2.5-4.12 is installed
  • OR php7-pear-7.2.5-4.12 is installed
  • OR php7-pear-Archive_Tar-7.2.5-4.12 is installed
  • OR php7-pgsql-7.2.5-4.12 is installed
  • OR php7-phar-7.2.5-4.12 is installed
  • OR php7-posix-7.2.5-4.12 is installed
  • OR php7-shmop-7.2.5-4.12 is installed
  • OR php7-snmp-7.2.5-4.12 is installed
  • OR php7-soap-7.2.5-4.12 is installed
  • OR php7-sockets-7.2.5-4.12 is installed
  • OR php7-sqlite-7.2.5-4.12 is installed
  • OR php7-sysvmsg-7.2.5-4.12 is installed
  • OR php7-sysvsem-7.2.5-4.12 is installed
  • OR php7-sysvshm-7.2.5-4.12 is installed
  • OR php7-tokenizer-7.2.5-4.12 is installed
  • OR php7-wddx-7.2.5-4.12 is installed
  • OR php7-xmlreader-7.2.5-4.12 is installed
  • OR php7-xmlrpc-7.2.5-4.12 is installed
  • OR php7-xmlwriter-7.2.5-4.12 is installed
  • OR php7-xsl-7.2.5-4.12 is installed
  • OR php7-zip-7.2.5-4.12 is installed
  • OR php7-zlib-7.2.5-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • accountsservice-0.6.35-1 is installed
  • OR accountsservice-lang-0.6.35-1 is installed
  • OR libaccountsservice0-0.6.35-1 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.35-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • MozillaFirefox-38.4.0esr-51 is installed
  • OR MozillaFirefox-translations-38.4.0esr-51 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libmpfr4-3.1.2-7 is installed
  • OR libmpfr4-32bit-3.1.2-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • accountsservice-0.6.42-14 is installed
  • OR accountsservice-lang-0.6.42-14 is installed
  • OR libaccountsservice0-0.6.42-14 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND freeradius-server-devel-3.0.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND Package Information
  • e2fsprogs-devel-1.42.11-7.1 is installed
  • OR libcom_err-devel-1.42.11-7.1 is installed
  • OR libext2fs-devel-1.42.11-7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND telepathy-idle-0.2.0-1.62 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • libraw-0.18.9-3.8 is installed
  • OR libraw-devel-0.18.9-3.8 is installed
  • OR libraw16-0.18.9-3.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • evolution-3.26.6-4.3 is installed
  • OR evolution-devel-3.26.6-4.3 is installed
  • OR evolution-lang-3.26.6-4.3 is installed
  • OR evolution-plugin-bogofilter-3.26.6-4.3 is installed
  • OR evolution-plugin-pst-import-3.26.6-4.3 is installed
  • OR evolution-plugin-spamassassin-3.26.6-4.3 is installed
    • BACK