Oval Definition:	oval:org.opensuse.security:def:51398
Revision Date: 2020-12-01 Version: 1 Title: Security update for samba (Important) Description: This update for samba fixes the following issues: Security issue fixed: - CVE-2019-3880: Fixed a path/symlink traversal vulnerability, which allowed an unprivileged user to save registry files outside a share (bsc#1131060). ldb was updated to version 1.2.4 (bsc#1125410 bsc#1131686): - Out of bound read in ldb_wildcard_compare - Hold at most 10 outstanding paged result cookies - Put 'results_store' into a doubly linked list - Refuse to build Samba against a newer minor version of ldb Non-security issues fixed: - Fixed update-apparmor-samba-profile script after apparmor switched to using named profiles (bsc#1126377). - Abide to the load_printers parameter in smb.conf (bsc#1124223). - Provide the 32bit samba winbind PAM module and its dependend 32bit libraries. Family: unix Class: patch Status: Reference(s): 1046303 1050244 1050549 1051510 1051858 1058115 1061840 1065600 1065729 1071995 1083647 1085030 1086301 1086313 1086314 1088047 1088810 1090888 1098633 1103659 1103661 1103989 1103990 1103991 1103992 1104353 1104427 1104745 1105392 1106383 1109837 1111666 1112178 1112374 1112504 1113956 1114279 1114407 1114685 1115026 1118338 1118661 1119113 1119532 1120423 1123328 1124223 1125410 1125703 1126206 1126377 1127371 1127611 1127682 1128902 1129551 1129770 1130836 1131060 1131645 1131686 1132390 1133021 1133147 1133401 1133738 1134303 1134395 1134973 1135556 1135642 1135897 1136161 1136264 1136343 1136935 1137625 1137728 1138879 1139712 1139751 1139771 1139865 1140025 1140133 1140228 1140328 1140405 1140424 1140428 1140454 1140463 1140575 1140577 1140637 1140658 1140709 1140715 1140719 1140726 1140727 1140728 1140814 1140887 1140888 1140889 1140891 1140893 1140948 1140954 1140955 1140956 1140957 1140958 1140959 1140960 1140961 1140962 1140964 1140971 1140972 1140992 1142685 1143959 1144162 1144333 1146519 1146544 1148868 1151548 1151910 1151927 1152107 1152472 1152489 1152631 1153108 1153274 1153535 1153917 1154243 1154353 1154492 1154601 1154768 1154916 1155331 1155334 1155518 1155689 1155798 1156015 1156259 1156286 1156395 1156462 1157155 1157157 1157169 1157303 1157424 1157480 1157692 1157770 1157853 1157895 1157908 1157966 1158013 1158021 1158026 1158050 1158071 1158094 1158132 1158242 1158265 1158381 1158533 1158637 1158638 1158639 1158640 1158641 1158643 1158644 1158645 1158646 1158647 1158649 1158651 1158652 1158748 1158765 1158819 1158823 1158824 1158827 1158834 1158893 1158900 1158903 1158904 1158954 1158983 1159024 1159028 1159271 1159297 1159377 1159394 1159483 1159484 1159500 1159569 1159588 1159781 1159841 1159867 1159908 1159909 1159910 1159911 1159955 1160147 1160195 1160210 1160211 1160218 1160433 1160442 1160469 1160470 1160476 1160560 1160618 1160678 1160755 1160756 1160784 1160787 1160802 1160803 1160804 1160917 1160947 1160966 1160979 1161087 1161243 1161360 1161472 1161495 1161514 1161518 1161522 1161523 1161549 1161552 1161674 1161702 1161907 1161931 1161933 1161934 1161935 1161936 1161937 1162002 1162028 1162063 1162067 1162109 1162139 1162400 1162557 1162617 1162618 1162619 1162623 1162702 1162928 1162943 1163206 1163383 1163384 1163762 1163774 1163836 1163840 1163841 1163842 1163843 1163844 1163845 1163846 1163849 1163850 1163851 1163852 1163853 1163855 1163856 1163857 1163858 1163859 1163860 1163861 1163862 1163863 1163867 1163869 1163880 1163971 1164051 1164069 1164098 1164115 1164314 1164315 1164388 1164471 1164598 1164632 1164648 1164705 1164712 1164727 1164728 1164729 1164730 1164731 1164732 1164733 1164734 1164735 1164777 1164780 1165211 1165975 1166985 1167104 1167651 1167773 1168230 1168779 1168838 1169021 1169094 1169194 1169514 1169681 1170011 1170284 1170442 1170617 1170774 1170879 1170891 1170895 1171150 1171189 1171191 1171219 1171220 1171246 1171252 1171254 1171417 1171513 1171529 1171530 1171662 1171688 1171699 1171732 1171739 1171743 1171759 1171828 1171862 1171868 1171904 1171915 1171982 1171983 1172017 1172046 1172061 1172062 1172063 1172064 1172065 1172066 1172067 1172068 1172069 1172073 1172086 1172095 1172169 1172170 1172208 1172223 1172342 1172343 1172344 1172365 1172366 1172374 1172391 1172393 1172394 1172453 1172458 1172467 1172484 1172537 1172543 1172687 1172719 1172739 1172751 1172759 1172775 1172781 1172782 1172783 1172814 1172823 1172841 1172871 1172938 1172939 1172940 1172956 1172983 1172984 1172985 1172986 1172987 1172988 1172989 1172990 1172999 1173060 1173068 1173085 1173139 1173206 1173271 1173280 1173284 1173428 1173438 1173461 1173514 1173552 1173573 1173625 1173746 1173776 1173817 1173818 1173820 1173822 1173823 1173824 1173825 1173826 1173827 1173828 1173830 1173831 1173832 1173833 1173834 1173836 1173837 1173838 1173839 1173841 1173843 1173844 1173845 1173847 1173860 1173894 1174018 1174244 1174345 1174910 1174913 1177914 CVE-2008-2109 CVE-2010-4341 CVE-2011-1758 CVE-2013-0219 CVE-2013-0220 CVE-2013-0287 CVE-2013-1989 CVE-2013-2066 CVE-2014-1932 CVE-2017-9120 CVE-2018-14851 CVE-2018-20836 CVE-2019-10126 CVE-2019-10220 CVE-2019-10638 CVE-2019-10639 CVE-2019-11599 CVE-2019-12838 CVE-2019-13233 CVE-2019-14615 CVE-2019-14896 CVE-2019-14897 CVE-2019-15213 CVE-2019-16746 CVE-2019-16994 CVE-2019-18808 CVE-2019-19036 CVE-2019-19045 CVE-2019-19051 CVE-2019-19054 CVE-2019-19066 CVE-2019-19318 CVE-2019-19319 CVE-2019-19332 CVE-2019-19338 CVE-2019-19447 CVE-2019-19462 CVE-2019-19523 CVE-2019-19526 CVE-2019-19527 CVE-2019-19532 CVE-2019-19533 CVE-2019-19535 CVE-2019-19537 CVE-2019-19767 CVE-2019-19927 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20095 CVE-2019-20096 CVE-2019-20810 CVE-2019-20812 CVE-2019-3880 CVE-2019-5068 CVE-2020-10711 CVE-2020-10732 CVE-2020-10751 CVE-2020-10766 CVE-2020-10767 CVE-2020-10768 CVE-2020-10773 CVE-2020-12653 CVE-2020-12654 CVE-2020-12656 CVE-2020-12769 CVE-2020-12771 CVE-2020-12823 CVE-2020-12888 CVE-2020-13143 CVE-2020-13974 CVE-2020-14361 CVE-2020-14362 CVE-2020-14416 CVE-2020-15393 CVE-2020-15780 CVE-2020-15999 CVE-2020-2732 CVE-2020-7053 CVE-2020-8428 CVE-2020-8648 CVE-2020-8992 SUSE-SU-2018:2337-1 SUSE-SU-2019:1040-1 SUSE-SU-2019:1854-1 SUSE-SU-2019:2229-1 SUSE-SU-2020:0111-2 SUSE-SU-2020:0560-1 SUSE-SU-2020:1475-1 SUSE-SU-2020:1930-1 SUSE-SU-2020:2027-1 SUSE-SU-2020:2398-1 SUSE-SU-2020:2995-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SP2 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libICE6-1.0.9-lp150.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libfreebl3-3.15.2-0.3 is installed OR libfreebl3-32bit-3.15.2-0.3 is installed OR mozilla-nspr-4.10.1-0.3 is installed OR mozilla-nspr-32bit-4.10.1-0.3 is installed OR mozilla-nss-3.15.2-0.3 is installed OR mozilla-nss-32bit-3.15.2-0.3 is installed OR mozilla-nss-tools-3.15.2-0.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information glibc-2.11.3-17.95 is installed OR glibc-32bit-2.11.3-17.95 is installed OR glibc-devel-2.11.3-17.95 is installed OR glibc-devel-32bit-2.11.3-17.95 is installed OR glibc-i18ndata-2.11.3-17.95 is installed OR glibc-locale-2.11.3-17.95 is installed OR glibc-locale-32bit-2.11.3-17.95 is installed OR nscd-2.11.3-17.95 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information kernel-default-3.0.101-71 is installed OR kernel-default-base-3.0.101-71 is installed OR kernel-default-devel-3.0.101-71 is installed OR kernel-default-extra-3.0.101-71 is installed OR kernel-pae-3.0.101-71 is installed OR kernel-pae-base-3.0.101-71 is installed OR kernel-pae-devel-3.0.101-71 is installed OR kernel-pae-extra-3.0.101-71 is installed OR kernel-source-3.0.101-71 is installed OR kernel-syms-3.0.101-71 is installed OR kernel-trace-3.0.101-71 is installed OR kernel-trace-devel-3.0.101-71 is installed OR kernel-xen-3.0.101-71 is installed OR kernel-xen-base-3.0.101-71 is installed OR kernel-xen-devel-3.0.101-71 is installed OR kernel-xen-extra-3.0.101-71 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND python-imaging-1.1.7-21 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libXv1-1.0.10-3 is installed OR libXv1-32bit-1.0.10-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information augeas-1.2.0-10 is installed OR augeas-lenses-1.2.0-10 is installed OR libaugeas0-1.2.0-10 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-70 is installed OR libMagick++-6_Q16-3-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-70 is installed OR libMagickWand-6_Q16-1-6.8.8.1-70 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information empathy-3.12.13-8.3 is installed OR empathy-lang-3.12.13-8.3 is installed OR telepathy-mission-control-plugin-goa-3.12.13-8.3 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information Mesa-18.3.2-34.9 is installed OR libOSMesa8-32bit-18.3.2-34.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information cups-2.2.7-3.11 is installed OR cups-ddk-2.2.7-3.11 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND perl-Switch-2.17-3.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_38-default-3-2 is installed OR kernel-livepatch-SLE15_Update_15-3-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.10 is installed OR kernel-default-livepatch-4.12.14-197.10 is installed OR kernel-default-livepatch-devel-4.12.14-197.10 is installed OR kernel-livepatch-4_12_14-197_10-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_3-1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP2 is installed AND Package Information kernel-azure-5.3.18-18.5 is installed OR kernel-azure-devel-5.3.18-18.5 is installed OR kernel-devel-azure-5.3.18-18.5 is installed OR kernel-source-azure-5.3.18-18.5 is installed OR kernel-syms-azure-5.3.18-18.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information apache2-mod_php7-7.2.5-4.6 is installed OR php7-7.2.5-4.6 is installed OR php7-bcmath-7.2.5-4.6 is installed OR php7-bz2-7.2.5-4.6 is installed OR php7-calendar-7.2.5-4.6 is installed OR php7-ctype-7.2.5-4.6 is installed OR php7-curl-7.2.5-4.6 is installed OR php7-dba-7.2.5-4.6 is installed OR php7-devel-7.2.5-4.6 is installed OR php7-dom-7.2.5-4.6 is installed OR php7-enchant-7.2.5-4.6 is installed OR php7-exif-7.2.5-4.6 is installed OR php7-fastcgi-7.2.5-4.6 is installed OR php7-fileinfo-7.2.5-4.6 is installed OR php7-fpm-7.2.5-4.6 is installed OR php7-ftp-7.2.5-4.6 is installed OR php7-gd-7.2.5-4.6 is installed OR php7-gettext-7.2.5-4.6 is installed OR php7-gmp-7.2.5-4.6 is installed OR php7-iconv-7.2.5-4.6 is installed OR php7-intl-7.2.5-4.6 is installed OR php7-json-7.2.5-4.6 is installed OR php7-ldap-7.2.5-4.6 is installed OR php7-mbstring-7.2.5-4.6 is installed OR php7-mysql-7.2.5-4.6 is installed OR php7-odbc-7.2.5-4.6 is installed OR php7-opcache-7.2.5-4.6 is installed OR php7-openssl-7.2.5-4.6 is installed OR php7-pcntl-7.2.5-4.6 is installed OR php7-pdo-7.2.5-4.6 is installed OR php7-pear-7.2.5-4.6 is installed OR php7-pear-Archive_Tar-7.2.5-4.6 is installed OR php7-pgsql-7.2.5-4.6 is installed OR php7-phar-7.2.5-4.6 is installed OR php7-posix-7.2.5-4.6 is installed OR php7-shmop-7.2.5-4.6 is installed OR php7-snmp-7.2.5-4.6 is installed OR php7-soap-7.2.5-4.6 is installed OR php7-sockets-7.2.5-4.6 is installed OR php7-sqlite-7.2.5-4.6 is installed OR php7-sysvmsg-7.2.5-4.6 is installed OR php7-sysvsem-7.2.5-4.6 is installed OR php7-sysvshm-7.2.5-4.6 is installed OR php7-tokenizer-7.2.5-4.6 is installed OR php7-wddx-7.2.5-4.6 is installed OR php7-xmlreader-7.2.5-4.6 is installed OR php7-xmlrpc-7.2.5-4.6 is installed OR php7-xmlwriter-7.2.5-4.6 is installed OR php7-xsl-7.2.5-4.6 is installed OR php7-zip-7.2.5-4.6 is installed OR php7-zlib-7.2.5-4.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND perl-YAML-LibYAML-0.38-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND dnsmasq-2.78-18.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libXp6-1.0.2-3 is installed OR libXp6-32bit-1.0.2-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libwireshark9-2.4.10-48.32 is installed OR libwiretap7-2.4.10-48.32 is installed OR libwscodecs1-2.4.10-48.32 is installed OR libwsutil8-2.4.10-48.32 is installed OR wireshark-2.4.10-48.32 is installed OR wireshark-gtk-2.4.10-48.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.6_02-43.36 is installed OR xen-doc-html-4.7.6_02-43.36 is installed OR xen-libs-4.7.6_02-43.36 is installed OR xen-libs-32bit-4.7.6_02-43.36 is installed OR xen-tools-4.7.6_02-43.36 is installed OR xen-tools-domU-4.7.6_02-43.36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cpp48-4.8.5-30 is installed OR gcc48-4.8.5-30 is installed OR gcc48-32bit-4.8.5-30 is installed OR gcc48-c++-4.8.5-30 is installed OR gcc48-info-4.8.5-30 is installed OR gcc48-locale-4.8.5-30 is installed OR libasan0-4.8.5-30 is installed OR libasan0-32bit-4.8.5-30 is installed OR libstdc++48-devel-4.8.5-30 is installed OR libstdc++48-devel-32bit-4.8.5-30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND binutils-2.32-9.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_64-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_20-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache2-2.4.23-29.21 is installed OR apache2-doc-2.4.23-29.21 is installed OR apache2-example-pages-2.4.23-29.21 is installed OR apache2-prefork-2.4.23-29.21 is installed OR apache2-utils-2.4.23-29.21 is installed OR apache2-worker-2.4.23-29.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libopenssl-devel-1.0.2p-1 is installed OR openssl-1.0.2p-1 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information freetype2-2.10.1-4.8 is installed OR freetype2-devel-2.10.1-4.8 is installed OR libfreetype6-2.10.1-4.8 is installed OR libfreetype6-32bit-2.10.1-4.8 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information xorg-x11-server-1.19.6-8.19 is installed OR xorg-x11-server-extra-1.19.6-8.19 is installed OR xorg-x11-server-sdk-1.19.6-8.19 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information openconnect-7.08-6.9 is installed OR openconnect-devel-7.08-6.9 is installed OR openconnect-lang-7.08-6.9 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information kernel-default-4.4.121-92.92 is installed OR kernel-default-base-4.4.121-92.92 is installed OR kernel-default-devel-4.4.121-92.92 is installed OR kernel-default-man-4.4.121-92.92 is installed OR kernel-devel-4.4.121-92.92 is installed OR kernel-macros-4.4.121-92.92 is installed OR kernel-source-4.4.121-92.92 is installed OR kernel-syms-4.4.121-92.92 is installed OR kgraft-patch-4_4_121-92_92-default-1-3.7 is installed OR kgraft-patch-SLE12-SP2_Update_24-1-3.7 is installed OR lttng-modules-2.7.1-9.4 is installed OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.92-9.4 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-Django-1.11.11-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.4-11.18 is installed
BACK