Oval Definition:oval:org.opensuse.security:def:57639
Revision Date:2020-12-01Version:1
Title:Security update for samba (Important)
Description:

This update for Samba fixes the following security issues:

- CVE-2015-5330: Remote read memory exploit in LDB (bnc#958586) - CVE-2015-5252: Insufficient symlink verification (file access outside the share) (bnc#958582) - CVE-2015-5296: No man in the middle protection when forcing smb encryption on the client side (bnc#958584) - CVE-2015-5299: Currently the snapshot browsing is not secure thru windows previous version (shadow_copy2) (bnc#958583)

Non-security issues fixed:

- Prevent null pointer access in samlogon fallback when security credentials are null (bnc#949022) - Ensure samlogon fall-back requests are rerouted after kerberos failure (bnc#953382) - Ensure 'Your account is disabled' message is displayed when attempting to ssh into locked account (bnc#953382) - Address unrecoverable winbind failure: 'key length too large' (bnc#934299) - Take resource group sids into account when caching netsamlogon data (bnc#912457) - Fix lookup of groups with 'Local Domain' scope from Active Directory (bnc#948244) - dependency issue with samba-winbind (bnc#936909)
Family:unixClass:patch
Status:Reference(s):1018699
1018700
1018701
1018702
1022805
1042812
1042826
1043289
1049072
1090638
1116574
1129231
1133375
1166844
1170771
1172515
1176315
295284
912457
934299
936909
948244
949022
953382
958582
958583
958584
958586
CVE-2008-1686
CVE-2009-2412
CVE-2009-2666
CVE-2010-1167
CVE-2011-0419
CVE-2011-1928
CVE-2011-1947
CVE-2011-3389
CVE-2012-3482
CVE-2013-4509
CVE-2014-3540
CVE-2014-9638
CVE-2014-9639
CVE-2014-9640
CVE-2015-1782
CVE-2015-5252
CVE-2015-5296
CVE-2015-5299
CVE-2015-5330
CVE-2015-6749
CVE-2016-0787
CVE-2016-2399
CVE-2016-9131
CVE-2016-9147
CVE-2016-9444
CVE-2017-11403
CVE-2017-17833
CVE-2017-9439
CVE-2017-9440
CVE-2017-9501
CVE-2018-13785
CVE-2018-3136
CVE-2018-3139
CVE-2018-3149
CVE-2018-3169
CVE-2018-3180
CVE-2018-3214
CVE-2019-9928
CVE-2020-10531
CVE-2020-12243
CVE-2020-17507
SUSE-SU-2016:0164-1
SUSE-SU-2017:0111-1
SUSE-SU-2017:0610-1
SUSE-SU-2017:2199-1
SUSE-SU-2018:2779-1
SUSE-SU-2018:3933-1
SUSE-SU-2019:0736-1
SUSE-SU-2019:1602-1
SUSE-SU-2020:1180-1
SUSE-SU-2020:1193-1
SUSE-SU-2020:2760-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • libmpg123-0-1.25.10-lp150.1 is installed
  • OR mpg123-openal-1.25.10-lp150.1 is installed
  • OR mpg123-pulse-1.25.10-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • MozillaThunderbird-60.7.0-lp151.2.4 is installed
  • OR MozillaThunderbird-buildsymbols-60.7.0-lp151.2.4 is installed
  • OR MozillaThunderbird-translations-common-60.7.0-lp151.2.4 is installed
  • OR MozillaThunderbird-translations-other-60.7.0-lp151.2.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • libldb1-3.6.3-64 is installed
  • OR libldb1-32bit-3.6.3-64 is installed
  • OR libsmbclient0-3.6.3-64 is installed
  • OR libsmbclient0-32bit-3.6.3-64 is installed
  • OR libtalloc2-3.6.3-64 is installed
  • OR libtalloc2-32bit-3.6.3-64 is installed
  • OR libtdb1-3.6.3-64 is installed
  • OR libtdb1-32bit-3.6.3-64 is installed
  • OR libtevent0-3.6.3-64 is installed
  • OR libtevent0-32bit-3.6.3-64 is installed
  • OR libwbclient0-3.6.3-64 is installed
  • OR libwbclient0-32bit-3.6.3-64 is installed
  • OR samba-3.6.3-64 is installed
  • OR samba-32bit-3.6.3-64 is installed
  • OR samba-client-3.6.3-64 is installed
  • OR samba-client-32bit-3.6.3-64 is installed
  • OR samba-doc-3.6.3-64 is installed
  • OR samba-krb-printing-3.6.3-64 is installed
  • OR samba-winbind-3.6.3-64 is installed
  • OR samba-winbind-32bit-3.6.3-64 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • bind-9.9.9P1-53 is installed
  • OR bind-chrootenv-9.9.9P1-53 is installed
  • OR bind-doc-9.9.9P1-53 is installed
  • OR bind-libs-9.9.9P1-53 is installed
  • OR bind-libs-32bit-9.9.9P1-53 is installed
  • OR bind-utils-9.9.9P1-53 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • fetchmail-6.3.26-12 is installed
  • OR fetchmailconf-6.3.26-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • xen-4.7.5_04-43.33 is installed
  • OR xen-doc-html-4.7.5_04-43.33 is installed
  • OR xen-libs-4.7.5_04-43.33 is installed
  • OR xen-libs-32bit-4.7.5_04-43.33 is installed
  • OR xen-tools-4.7.5_04-43.33 is installed
  • OR xen-tools-domU-4.7.5_04-43.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.30 is installed
  • OR libopenssl1_0_0-1.0.2j-60.30 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.30 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.30 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.30 is installed
  • OR openssl-1.0.2j-60.30 is installed
  • OR openssl-doc-1.0.2j-60.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • openslp-2.0.0-18.15 is installed
  • OR openslp-32bit-2.0.0-18.15 is installed
  • OR openslp-server-2.0.0-18.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND binutils-2.26.1-9.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libldap-2_4-2-2.4.41-18.71 is installed
  • OR libldap-2_4-2-32bit-2.4.41-18.71 is installed
  • OR openldap2-2.4.41-18.71 is installed
  • OR openldap2-back-meta-2.4.41-18.71 is installed
  • OR openldap2-client-2.4.41-18.71 is installed
  • OR openldap2-doc-2.4.41-18.71 is installed
  • OR openldap2-ppolicy-check-password-1.2-18.71 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_176-94_88-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_24-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND shadow-4.2.1-27.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • colord-gtk-lang-0.1.26-6 is installed
  • OR libcolord-gtk1-0.1.26-6 is installed
  • OR libcolord2-1.3.3-12 is installed
  • OR libcolord2-32bit-1.3.3-12 is installed
  • OR libcolorhug2-1.3.3-12 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.35-38.29 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.35-38.29 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.35-38.29 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.35-38.29 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.35-38.29 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND python-SQLAlchemy-1.1.12-3.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • dovecot22-2.2.31-19.17 is installed
  • OR dovecot22-backend-mysql-2.2.31-19.17 is installed
  • OR dovecot22-backend-pgsql-2.2.31-19.17 is installed
  • OR dovecot22-backend-sqlite-2.2.31-19.17 is installed
    • BACK