Oval Definition:oval:org.opensuse.security:def:70635
Revision Date:2020-12-01Version:1
Title:Security update for samba (Important)
Description:

This update for samba fixes the following issues:

- ZeroLogon: An elevation of privilege was possible with some non default configurations when an attacker established a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC) (CVE-2020-1472, bsc#1176579).

- Update to samba 4.11.13 + s3: libsmb: Fix SMB2 client rename bug to a Windows server; (bso#14403); + dsdb: Allow 'password hash userPassword schemes = CryptSHA256' to work on RHEL7; (bso#14424); + dbcheck: Allow a dangling forward link outside our known NCs; (bso#14450); + lib/debug: Set the correct default backend loglevel to MAX_DEBUG_LEVEL; (bso#14426); + s3:smbd: PANIC: assert failed in get_lease_type(); (bso#14428); + lib/util: do not install 'test_util_paths'; (bso#14370); + lib:util: Fix smbclient -l basename dir; (bso#14345); + s3:smbd: PANIC: assert failed in get_lease_type(); (bso#14428); + util: Allow symlinks in directory_create_or_exist; (bso#14166); + docs: Fix documentation for require_membership_of of pam_winbind; (bso#14358); + s3:winbind:idmap_ad: Make failure to get attrnames for schema mode fatal; (bso#14425);
Family:unixClass:patch
Status:Reference(s):1176579
1177513
1177729
CVE-2020-12351
CVE-2020-1472
CVE-2020-25645
Platform(s):SUSE Linux Enterprise Module for Live Patching 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed
  • AND Package Information
  • kernel-livepatch-5_3_18-24_15-default-3-2 is installed
  • OR kernel-livepatch-SLE15-SP2_Update_3-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • ctdb-pcp-pmda-4.11.13+git.189.e9bd318cd13-4.11 is installed
  • OR ctdb-tests-4.11.13+git.189.e9bd318cd13-4.11 is installed
  • OR libdcerpc-samr0-32bit-4.11.13+git.189.e9bd318cd13-4.11 is installed
  • OR libsamba-policy0-python3-32bit-4.11.13+git.189.e9bd318cd13-4.11 is installed
  • OR libsmbclient0-32bit-4.11.13+git.189.e9bd318cd13-4.11 is installed
  • OR samba-4.11.13+git.189.e9bd318cd13-4.11 is installed
  • OR samba-ad-dc-32bit-4.11.13+git.189.e9bd318cd13-4.11 is installed
  • OR samba-client-32bit-4.11.13+git.189.e9bd318cd13-4.11 is installed
  • OR samba-doc-4.11.13+git.189.e9bd318cd13-4.11 is installed
  • OR samba-libs-python3-32bit-4.11.13+git.189.e9bd318cd13-4.11 is installed
  • OR samba-test-4.11.13+git.189.e9bd318cd13-4.11 is installed
    • BACK