OVAL Reference oval:org.opensuse.security:def:56517

Oval Definition:

oval:org.opensuse.security:def:56517

Revision Date:	2020-12-01	Version:	1
Title:	Security update for samba (Moderate)
Description:	Samba was updated to 4.6.14, fixing bugs and security issues: Version update to 4.6.14 (bsc#1093664): + vfs_ceph: add fake async pwrite/pread send/recv hooks; (bso#13425). + Fix memory leak in vfs_ceph; (bso#13424). + winbind: avoid using fstrcpy(dcname,...) in _dual_init_connection; (bso#13294). + s3:smb2_server: correctly maintain request counters for compound requests; (bso#13215). + s3: smbd: Unix extensions attempts to change wrong field in fchown call; (bso#13375). + s3:smbd: map nterror on smb2_flush errorpath; (bso#13338). + vfs_glusterfs: Fix the wrong pointer being sent in glfs_fsync_async; (bso#13297). + s3: smbd: Fix possible directory fd leak if the underlying OS doesn't support fdopendir(); (bso#13270). + s3: ldap: Ensure the ADS_STRUCT pointer doesn't get freed on error, we don't own it here; (bso#13244). + s3:libsmb: allow -U'\\administrator' to work; (bso#13206). + CVE-2018-1057: s4:dsdb: fix unprivileged password changes; (bso#13272); (bsc#1081024). + s3:smbd: Do not crash if we fail to init the session table; (bso#13315). + libsmb: Use smb2 tcon if conn_protocol >= SMB2_02; (bso#13310). + smbXcli: Add 'force_channel_sequence'; (bso#13215). + smbd: Fix channel sequence number checks for long-running requests; (bso#13215). + s3:smb2_server: allow logoff, close, unlock, cancel and echo on expired sessions; (bso#13197). + s3:smbd: return the correct error for cancelled SMB2 notifies on expired sessions; (bso#13197). + samba: Only use async signal-safe functions in signal handler; (bso#13240). + subnet: Avoid a segfault when renaming subnet objects; (bso#13031). - Fix vfs_ceph with 'aio read size' or 'aio write size' > 0; (bsc#1093664). + vfs_ceph: add fake async pwrite/pread send/recv hooks; (bso#13425). + Fix memory leak in vfs_ceph; (bso#13424).
Family:	unix	Class:	patch
Status:		Reference(s):	1035442 1057460 1061081 1065872 1068032 1070158 1070159 1070160 1070163 1074562 1076116 1076180 1076390 1077358 1080635 1080662 1081024 1082810 1083125 1085018 1085447 1090368 1090638 1090646 1093664 1099510 1101288 1104199 1104202 1135902 1140402 1143794 812259 855062 867583 899908 902606 924919 925502 929900 935087 937261 937444 938577 940338 940946 941363 942476 943989 944749 945649 947953 949440 949936 950292 951199 951392 951615 952579 952976 954992 955118 955131 955354 955654 956514 956708 957525 957988 957990 958463 958886 958951 959090 959146 959190 959257 959364 959399 959436 959463 959629 960221 960227 960281 960300 961202 961257 961500 961509 961516 961588 961971 962336 962356 962788 962965 963449 963572 963765 963767 963825 964230 964821 965344 965840 966304 968849 984858 985217 986251 991616 995352 CVE-2009-3627 CVE-2011-2729 CVE-2013-7446 CVE-2015-0272 CVE-2015-2775 CVE-2015-3451 CVE-2015-5707 CVE-2015-7514 CVE-2015-7550 CVE-2015-7799 CVE-2015-8215 CVE-2015-8539 CVE-2015-8543 CVE-2015-8550 CVE-2015-8551 CVE-2015-8569 CVE-2015-8575 CVE-2015-8660 CVE-2015-8767 CVE-2015-8785 CVE-2016-0723 CVE-2016-2069 CVE-2016-2098 CVE-2016-3477 CVE-2016-3521 CVE-2016-3615 CVE-2016-5440 CVE-2016-6893 CVE-2017-13166 CVE-2017-15595 CVE-2017-17563 CVE-2017-17564 CVE-2017-17565 CVE-2017-17566 CVE-2017-17833 CVE-2017-18030 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2017-7550 CVE-2018-0618 CVE-2018-1057 CVE-2018-10915 CVE-2018-10925 CVE-2018-13796 CVE-2018-2579 CVE-2018-2582 CVE-2018-2588 CVE-2018-2599 CVE-2018-2602 CVE-2018-2603 CVE-2018-2618 CVE-2018-2633 CVE-2018-2634 CVE-2018-2637 CVE-2018-2641 CVE-2018-2657 CVE-2018-2663 CVE-2018-2677 CVE-2018-2678 CVE-2018-5683 CVE-2018-5950 CVE-2018-8781 CVE-2018-8897 CVE-2019-12155 CVE-2019-13164 CVE-2019-14378 SUSE-SU-2016:0585-1 SUSE-SU-2016:0867-1 SUSE-SU-2016:2218-1 SUSE-SU-2018:0605-1 SUSE-SU-2018:0609-1 SUSE-SU-2018:0743-1 SUSE-SU-2018:1519-1 SUSE-SU-2018:1687-1 SUSE-SU-2018:2779-1 SUSE-SU-2018:3377-1 SUSE-SU-2018:4296-1 SUSE-SU-2019:2221-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information kdelibs4-4.14.38-lp150.5 is installed OR kdelibs4-branding-upstream-4.14.38-lp150.5 is installed OR kdelibs4-core-4.14.38-lp150.5 is installed OR libkde4-4.14.38-lp150.5 is installed OR libkdecore4-4.14.38-lp150.5 is installed OR libksuseinstall1-4.14.38-lp150.5 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libu2f-host-1.1.6-lp151.2.3 is installed OR libu2f-host-devel-1.1.6-lp151.2.3 is installed OR libu2f-host-doc-1.1.6-lp151.2.3 is installed OR libu2f-host0-1.1.6-lp151.2.3 is installed OR u2f-host-1.1.6-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libdcerpc-binding0-4.6.14+git.150.1540e575faf-3.24 is installed OR libdcerpc-binding0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libdcerpc0-4.6.14+git.150.1540e575faf-3.24 is installed OR libdcerpc0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libndr-krb5pac0-4.6.14+git.150.1540e575faf-3.24 is installed OR libndr-krb5pac0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libndr-nbt0-4.6.14+git.150.1540e575faf-3.24 is installed OR libndr-nbt0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libndr-standard0-4.6.14+git.150.1540e575faf-3.24 is installed OR libndr-standard0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libndr0-4.6.14+git.150.1540e575faf-3.24 is installed OR libndr0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libnetapi0-4.6.14+git.150.1540e575faf-3.24 is installed OR libnetapi0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libsamba-credentials0-4.6.14+git.150.1540e575faf-3.24 is installed OR libsamba-credentials0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libsamba-errors0-4.6.14+git.150.1540e575faf-3.24 is installed OR libsamba-errors0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libsamba-hostconfig0-4.6.14+git.150.1540e575faf-3.24 is installed OR libsamba-hostconfig0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libsamba-passdb0-4.6.14+git.150.1540e575faf-3.24 is installed OR libsamba-passdb0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libsamba-util0-4.6.14+git.150.1540e575faf-3.24 is installed OR libsamba-util0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libsamdb0-4.6.14+git.150.1540e575faf-3.24 is installed OR libsamdb0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libsmbclient0-4.6.14+git.150.1540e575faf-3.24 is installed OR libsmbclient0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libsmbconf0-4.6.14+git.150.1540e575faf-3.24 is installed OR libsmbconf0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libsmbldap0-4.6.14+git.150.1540e575faf-3.24 is installed OR libsmbldap0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libtevent-util0-4.6.14+git.150.1540e575faf-3.24 is installed OR libtevent-util0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR libwbclient0-4.6.14+git.150.1540e575faf-3.24 is installed OR libwbclient0-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR samba-4.6.14+git.150.1540e575faf-3.24 is installed OR samba-client-4.6.14+git.150.1540e575faf-3.24 is installed OR samba-client-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR samba-doc-4.6.14+git.150.1540e575faf-3.24 is installed OR samba-libs-4.6.14+git.150.1540e575faf-3.24 is installed OR samba-libs-32bit-4.6.14+git.150.1540e575faf-3.24 is installed OR samba-winbind-4.6.14+git.150.1540e575faf-3.24 is installed OR samba-winbind-32bit-4.6.14+git.150.1540e575faf-3.24 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND perl-HTML-Parser-3.71-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_63-default-6-2 is installed OR kgraft-patch-3_12_74-60_64_63-xen-6-2 is installed OR kgraft-patch-SLE12-SP1_Update_22-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information apache-commons-daemon-1.0.15-4 is installed OR apache-commons-daemon-javadoc-1.0.15-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libzypp-16.17.20-27.52 is installed OR zypper-1.13.45-18.33 is installed OR zypper-log-1.13.45-18.33 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information openslp-2.0.0-18.17 is installed OR openslp-32bit-2.0.0-18.17 is installed OR openslp-server-2.0.0-18.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_85-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_23-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information glib2-lang-2.48.2-10 is installed OR glib2-tools-2.48.2-10 is installed OR libgio-2_0-0-2.48.2-10 is installed OR libgio-2_0-0-32bit-2.48.2-10 is installed OR libglib-2_0-0-2.48.2-10 is installed OR libglib-2_0-0-32bit-2.48.2-10 is installed OR libgmodule-2_0-0-2.48.2-10 is installed OR libgmodule-2_0-0-32bit-2.48.2-10 is installed OR libgobject-2_0-0-2.48.2-10 is installed OR libgobject-2_0-0-32bit-2.48.2-10 is installed OR libgthread-2_0-0-2.48.2-10 is installed OR libgthread-2_0-0-32bit-2.48.2-10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_155-94_50-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_17-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libmysqlclient18-10.0.40.4-29.41 is installed OR libmysqlclient18-32bit-10.0.40.4-29.41 is installed OR mariadb-10.0.40.4-29.41 is installed OR mariadb-client-10.0.40.4-29.41 is installed OR mariadb-errormessages-10.0.40.4-29.41 is installed OR mariadb-tools-10.0.40.4-29.41 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information glibc-2.22-15 is installed OR glibc-32bit-2.22-15 is installed OR glibc-devel-2.22-15 is installed OR glibc-devel-32bit-2.22-15 is installed OR glibc-html-2.22-15 is installed OR glibc-i18ndata-2.22-15 is installed OR glibc-info-2.22-15 is installed OR glibc-locale-2.22-15 is installed OR glibc-locale-32bit-2.22-15 is installed OR glibc-profile-2.22-15 is installed OR glibc-profile-32bit-2.22-15 is installed OR nscd-2.22-15 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information openstack-ironic-4.2.3~a0~dev14-1 is installed OR openstack-ironic-api-4.2.3~a0~dev14-1 is installed OR openstack-ironic-conductor-4.2.3~a0~dev14-1 is installed OR python-ironic-4.2.3~a0~dev14-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information postgresql96-9.6.10-3.22 is installed OR postgresql96-contrib-9.6.10-3.22 is installed OR postgresql96-docs-9.6.10-3.22 is installed OR postgresql96-libs-9.6.10-3.22 is installed OR postgresql96-server-9.6.10-3.22 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information grub2-2.02-4.53 is installed OR grub2-i386-pc-2.02-4.53 is installed OR grub2-snapper-plugin-2.02-4.53 is installed OR grub2-systemd-sleep-plugin-2.02-4.53 is installed OR grub2-x86_64-efi-2.02-4.53 is installed OR grub2-x86_64-xen-2.02-4.53 is installed

BACK