Oval Definition:	oval:org.opensuse.security:def:53114
Revision Date: 2020-12-01 Version: 1 Title: Security update for samba (Moderate) Description: This update for samba fixes the following issues: Security issue fixed: - CVE-2019-10197: Fixed user escape from share path definition (bsc#1141267). Bug fix: - Prepare for future use of kernel keyrings, modify /etc/pam.d/samba to include pam_keyinit.so; (bsc#1144059). Family: unix Class: patch Status: Reference(s): 1003898 1010977 1010979 1011830 1012530 1013669 1015993 1017308 1017310 1017311 1017312 1017313 1017314 1017318 1017319 1017320 1017321 1017322 1017324 1017325 1017326 1017421 1020433 1020435 1020436 1020439 1020441 1020443 1020446 1020448 1091610 1104199 1104202 1141267 1144059 911812 CVE-2009-0037 CVE-2009-0946 CVE-2009-2417 CVE-2010-2497 CVE-2010-2805 CVE-2010-3053 CVE-2010-3054 CVE-2010-3311 CVE-2010-3814 CVE-2010-3855 CVE-2011-0020 CVE-2011-0064 CVE-2011-0226 CVE-2011-1898 CVE-2011-3256 CVE-2011-3439 CVE-2012-0029 CVE-2012-0217 CVE-2012-1126 CVE-2012-1127 CVE-2012-1128 CVE-2012-1129 CVE-2012-1130 CVE-2012-1131 CVE-2012-1132 CVE-2012-1133 CVE-2012-1134 CVE-2012-1135 CVE-2012-1136 CVE-2012-1137 CVE-2012-1138 CVE-2012-1139 CVE-2012-1140 CVE-2012-1141 CVE-2012-1142 CVE-2012-1143 CVE-2012-1144 CVE-2012-2625 CVE-2012-2738 CVE-2012-3432 CVE-2012-3433 CVE-2012-4411 CVE-2012-4535 CVE-2012-4536 CVE-2012-4537 CVE-2012-4538 CVE-2012-4539 CVE-2012-4544 CVE-2012-5510 CVE-2012-5511 CVE-2012-5513 CVE-2012-5514 CVE-2012-5515 CVE-2012-5525 CVE-2012-5634 CVE-2012-5668 CVE-2012-5669 CVE-2012-5670 CVE-2012-6075 CVE-2013-0151 CVE-2013-0152 CVE-2013-0153 CVE-2013-0249 CVE-2013-1442 CVE-2013-1917 CVE-2013-1918 CVE-2013-1919 CVE-2013-1922 CVE-2013-1944 CVE-2013-1952 CVE-2013-2007 CVE-2013-2174 CVE-2013-3495 CVE-2013-4355 CVE-2013-4356 CVE-2013-4361 CVE-2013-4375 CVE-2013-4416 CVE-2013-4494 CVE-2013-4533 CVE-2013-4534 CVE-2013-4537 CVE-2013-4538 CVE-2013-4539 CVE-2013-4540 CVE-2013-4545 CVE-2013-4551 CVE-2013-4553 CVE-2013-4554 CVE-2014-0015 CVE-2014-0138 CVE-2014-0139 CVE-2014-0222 CVE-2014-2240 CVE-2014-2241 CVE-2014-3124 CVE-2014-3158 CVE-2014-3248 CVE-2014-3613 CVE-2014-3620 CVE-2014-3640 CVE-2014-3672 CVE-2014-3707 CVE-2014-5146 CVE-2014-5149 CVE-2014-6268 CVE-2014-6272 CVE-2014-7154 CVE-2014-7155 CVE-2014-7156 CVE-2014-7188 CVE-2014-7815 CVE-2014-8150 CVE-2014-9474 CVE-2014-9656 CVE-2014-9657 CVE-2014-9658 CVE-2014-9659 CVE-2014-9660 CVE-2014-9661 CVE-2014-9662 CVE-2014-9663 CVE-2014-9664 CVE-2014-9665 CVE-2014-9666 CVE-2014-9667 CVE-2014-9668 CVE-2014-9669 CVE-2014-9670 CVE-2014-9671 CVE-2014-9672 CVE-2014-9673 CVE-2014-9674 CVE-2014-9675 CVE-2015-1779 CVE-2015-3143 CVE-2015-3144 CVE-2015-3145 CVE-2015-3148 CVE-2015-3153 CVE-2015-3259 CVE-2015-3340 CVE-2015-3456 CVE-2015-4037 CVE-2015-4103 CVE-2015-4104 CVE-2015-4105 CVE-2015-4106 CVE-2015-5154 CVE-2015-5239 CVE-2015-5278 CVE-2015-5307 CVE-2015-6815 CVE-2015-6855 CVE-2015-7311 CVE-2015-7504 CVE-2015-7512 CVE-2015-7542 CVE-2015-7549 CVE-2015-7835 CVE-2015-7969 CVE-2015-7970 CVE-2015-7971 CVE-2015-7972 CVE-2015-8104 CVE-2015-8339 CVE-2015-8340 CVE-2015-8341 CVE-2015-8345 CVE-2015-8504 CVE-2015-8550 CVE-2015-8554 CVE-2015-8555 CVE-2015-8558 CVE-2015-8567 CVE-2015-8568 CVE-2015-8613 CVE-2015-8615 CVE-2015-8619 CVE-2015-8743 CVE-2015-8744 CVE-2015-8745 CVE-2016-0755 CVE-2016-10013 CVE-2016-10024 CVE-2016-10025 CVE-2016-10046 CVE-2016-10048 CVE-2016-10049 CVE-2016-10050 CVE-2016-10051 CVE-2016-10052 CVE-2016-10059 CVE-2016-10060 CVE-2016-10061 CVE-2016-10062 CVE-2016-10063 CVE-2016-10064 CVE-2016-10065 CVE-2016-10068 CVE-2016-10069 CVE-2016-10070 CVE-2016-10071 CVE-2016-10144 CVE-2016-10145 CVE-2016-10146 CVE-2016-1568 CVE-2016-1570 CVE-2016-1571 CVE-2016-1714 CVE-2016-1922 CVE-2016-1981 CVE-2016-2198 CVE-2016-2270 CVE-2016-2271 CVE-2016-2391 CVE-2016-2392 CVE-2016-2538 CVE-2016-2841 CVE-2016-4439 CVE-2016-4441 CVE-2016-5238 CVE-2016-5338 CVE-2016-5419 CVE-2016-5420 CVE-2016-5421 CVE-2016-6258 CVE-2016-6259 CVE-2016-6351 CVE-2016-7092 CVE-2016-7093 CVE-2016-7094 CVE-2016-7141 CVE-2016-7167 CVE-2016-7777 CVE-2016-7908 CVE-2016-7909 CVE-2016-8615 CVE-2016-8616 CVE-2016-8617 CVE-2016-8618 CVE-2016-8619 CVE-2016-8620 CVE-2016-8621 CVE-2016-8622 CVE-2016-8623 CVE-2016-8624 CVE-2016-8654 CVE-2016-8667 CVE-2016-8669 CVE-2016-8910 CVE-2016-9377 CVE-2016-9378 CVE-2016-9379 CVE-2016-9380 CVE-2016-9381 CVE-2016-9382 CVE-2016-9383 CVE-2016-9384 CVE-2016-9385 CVE-2016-9386 CVE-2016-9395 CVE-2016-9398 CVE-2016-9560 CVE-2016-9586 CVE-2016-9591 CVE-2016-9637 CVE-2016-9811 CVE-2016-9921 CVE-2016-9922 CVE-2016-9932 CVE-2017-10664 CVE-2017-11434 CVE-2017-12135 CVE-2017-12136 CVE-2017-12137 CVE-2017-12855 CVE-2017-14316 CVE-2017-14317 CVE-2017-14318 CVE-2017-14319 CVE-2017-15289 CVE-2017-15588 CVE-2017-15589 CVE-2017-15590 CVE-2017-15591 CVE-2017-15592 CVE-2017-15593 CVE-2017-15594 CVE-2017-15595 CVE-2017-15597 CVE-2017-17563 CVE-2017-17564 CVE-2017-17565 CVE-2017-17566 CVE-2017-18030 CVE-2017-2615 CVE-2017-2620 CVE-2017-5506 CVE-2017-5507 CVE-2017-5508 CVE-2017-5510 CVE-2017-5511 CVE-2017-5526 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2017-6505 CVE-2017-7407 CVE-2017-8309 CVE-2017-9330 CVE-2018-10471 CVE-2018-10472 CVE-2018-10915 CVE-2018-10925 CVE-2018-10981 CVE-2018-10982 CVE-2018-1115 CVE-2018-11806 CVE-2018-12891 CVE-2018-12892 CVE-2018-12893 CVE-2018-15469 CVE-2018-15470 CVE-2018-3639 CVE-2018-3646 CVE-2018-3665 CVE-2018-5683 CVE-2018-7540 CVE-2018-7541 CVE-2018-7542 CVE-2018-8897 CVE-2019-10197 SUSE-SU-2016:2565-1 SUSE-SU-2017:0084-1 SUSE-SU-2017:0263-1 SUSE-SU-2017:0529-1 SUSE-SU-2018:2564-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information elfutils-0.168-lp150.2 is installed OR elfutils-lang-0.168-lp150.2 is installed OR libasm1-0.168-lp150.2 is installed OR libdw1-0.168-lp150.2 is installed OR libdw1-32bit-0.168-lp150.2 is installed OR libebl-plugins-0.168-lp150.2 is installed OR libebl-plugins-32bit-0.168-lp150.2 is installed OR libelf1-0.168-lp150.2 is installed OR libelf1-32bit-0.168-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND rdesktop-1.8.6-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information Mesa-7.11.2-0.9 is installed OR Mesa-32bit-7.11.2-0.9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information grub2-2.00-0.49 is installed OR grub2-x86_64-efi-2.00-0.49 is installed OR grub2-x86_64-xen-2.00-0.49 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND icedtea-web-1.5.3-0.9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libmpfr4-3.1.2-7 is installed OR mpfr-3.1.2-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information dbus-1-1.8.22-22 is installed OR dbus-1-x11-1.8.22-22 is installed OR libdbus-1-3-1.8.22-22 is installed OR libdbus-1-3-32bit-1.8.22-22 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND facter-2.0.2-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information curl-7.37.0-36 is installed OR libcurl4-7.37.0-36 is installed OR libcurl4-32bit-7.37.0-36 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gwenhywfar-lang-4.9.0beta-3.3 is installed OR gwenhywfar-tools-4.9.0beta-3.3 is installed OR libgwengui-gtk2-0-4.9.0beta-3.3 is installed OR libgwenhywfar60-4.9.0beta-3.3 is installed OR libgwenhywfar60-plugins-4.9.0beta-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information libsamba-policy0-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-ad-dc-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-dsdb-modules-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-libs-python-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-python-4.9.5+git.187.71edee57d5a-3.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libecpg6-10.5-4.5 is installed OR postgresql10-10.5-4.5 is installed OR postgresql10-contrib-10.5-4.5 is installed OR postgresql10-devel-10.5-4.5 is installed OR postgresql10-docs-10.5-4.5 is installed OR postgresql10-plperl-10.5-4.5 is installed OR postgresql10-plpython-10.5-4.5 is installed OR postgresql10-pltcl-10.5-4.5 is installed OR postgresql10-server-10.5-4.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND libmms0-0.6.2-15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_35-default-7-2 is installed OR kgraft-patch-3_12_69-60_64_35-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_14-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information krb5-1.12.5-39 is installed OR krb5-32bit-1.12.5-39 is installed OR krb5-client-1.12.5-39 is installed OR krb5-doc-1.12.5-39 is installed OR krb5-plugin-kdb-ldap-1.12.5-39 is installed OR krb5-plugin-preauth-otp-1.12.5-39 is installed OR krb5-plugin-preauth-pkinit-1.12.5-39 is installed OR krb5-server-1.12.5-39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND libnghttp2-14-1.7.1-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjpeg-turbo-1.5.3-31.19 is installed OR libjpeg62-62.2.0-31.19 is installed OR libjpeg62-32bit-62.2.0-31.19 is installed OR libjpeg62-turbo-1.5.3-31.19 is installed OR libjpeg8-8.1.2-31.19 is installed OR libjpeg8-32bit-8.1.2-31.19 is installed OR libturbojpeg0-8.1.2-31.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND sudo-1.8.20p2-3.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information jakarta-commons-fileupload-1.1.1-122.3 is installed OR jakarta-commons-fileupload-javadoc-1.1.1-122.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information fetchmail-6.3.26-12 is installed OR fetchmailconf-6.3.26-12 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information emacs-24.3-25.3 is installed OR emacs-el-24.3-25.3 is installed OR emacs-info-24.3-25.3 is installed OR emacs-nox-24.3-25.3 is installed OR emacs-x11-24.3-25.3 is installed OR etags-24.3-25.3 is installed Definition Synopsis SUSE OpenStack Cloud 6-LTSS is installed AND Package Information containerd-1.2.2-16.14 is installed OR docker-18.09.1_ce-98.34 is installed OR docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed OR docker-runc-1.0.0rc6+gitr3748_96ec2177ae84-1.17 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-Werkzeug-0.12.2-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information crowbar-5.0+git.1528696845.81a7b5d0-3.3 is installed OR crowbar-core-5.0+git.1533887407.6e9b0412d-3.8 is installed OR crowbar-core-branding-upstream-5.0+git.1533887407.6e9b0412d-3.8 is installed OR crowbar-devel-5.0+git.1528696845.81a7b5d0-3.3 is installed OR crowbar-ha-5.0+git.1530177874.35b9099-3.3 is installed OR crowbar-init-5.0+git.1520420379.d5bbb35-3.3 is installed OR crowbar-openstack-5.0+git.1534167599.d325ef804-4.8 is installed OR crowbar-ui-1.2.0+git.1533844061.4ac8e723-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-SQLAlchemy-1.2.10-3.3 is installed
BACK