Oval Definition:oval:org.opensuse.security:def:66230
Revision Date:2020-12-01Version:1
Title:Security update for samba (Important)
Description:

This update for provides the following fixes:

Following security issues were fixed:

- CVE-2019-14847: User with 'get changes' permission could have crashed AD DC LDAP server via dirsync (bsc#1154598). - CVE-2019-10218: Client code could have returned filenames containing path separators (bsc#1144902). - CVE-2019-14833: Accent with 'check script password' where Samba AD DC check password script did not receive the full password (bsc#1154289).

Also following non-security issues were fixed:

- Fix auth problems when printing via smbspool backend with kerberos. (bsc#1148539) - Fix broken username/password authentication with CUPS and smbspool. (bsc#1152143)
Family:unixClass:patch
Status:Reference(s):1065729
1140683
1144902
1148539
1152143
1154289
1154598
1172538
1174748
1175520
1176400
1176946
1177027
1177340
1177511
1177685
1177724
1177725
CVE-2019-10218
CVE-2019-14833
CVE-2019-14847
CVE-2020-12351
CVE-2020-12352
CVE-2020-25645
SUSE-SU-2019:2866-1
SUSE-SU-2020:2972-1
Platform(s):SUSE Linux Enterprise High Availability 15 SP1
SUSE Linux Enterprise Workstation Extension 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP1 is installed
  • AND Package Information
  • ctdb-4.9.5+git.210.ab0549acb05-3.14 is installed
  • OR samba-4.9.5+git.210.ab0549acb05-3.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.64 is installed
  • OR kernel-default-extra-4.12.14-197.64 is installed
    • BACK