Security update for samba
Announcement ID: | SUSE-SU-2016:3300-1 |
---|---|
Rating: | moderate |
References: | |
Cross-References: | |
CVSS scores: |
|
Affected Products: |
|
An update that solves two vulnerabilities and has six security fixes can now be installed.
Description:
This update for samba provides the following fixes:
Security issues fixed:
- CVE-2016-2125: Don't send delegated credentials to all servers. (bsc#1014441)
- CVE-2016-2126: Prevent denial of service due to a client triggered crash in the winbindd parent process. (bsc#1014442)
Non security issues fixed:
- Allow SESSION KEY setup without signing. (bsc#1009711)
- Fix crash bug in tevent_queue_immediate_trigger(). (bsc#1003731)
- Don't fail when using default domain with user@domain.com format. (bsc#997833)
- Prevent core, make sure response->extra_data.data is always cleared out. (bsc#993692)
- Honor smb.conf socket options in winbind. (bsc#975131)
- Fix crash with net rpc join. (bsc#978898)
- Fix a regression verifying the security trailer. (bsc#978898)
- Fix updating netlogon credentials. (bsc#978898)
Patch Instructions:
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
-
SUSE Linux Enterprise Server 11 SP2 LTSS 11-SP2
zypper in -t patch slessp2-samba-12925=1
Package List:
-
SUSE Linux Enterprise Server 11 SP2 LTSS 11-SP2 (s390x x86_64 i586)
- libsmbclient0-3.6.3-56.1
- libtalloc2-3.6.3-56.1
- samba-3.6.3-56.1
- libwbclient0-3.6.3-56.1
- samba-client-3.6.3-56.1
- samba-krb-printing-3.6.3-56.1
- ldapsmb-1.34b-56.1
- libldb1-3.6.3-56.1
- samba-winbind-3.6.3-56.1
- libtdb1-3.6.3-56.1
- libtevent0-3.6.3-56.1
-
SUSE Linux Enterprise Server 11 SP2 LTSS 11-SP2 (noarch)
- samba-doc-3.6.3-56.1
-
SUSE Linux Enterprise Server 11 SP2 LTSS 11-SP2 (s390x x86_64)
- samba-client-32bit-3.6.3-56.1
- libtalloc2-32bit-3.6.3-56.1
- samba-winbind-32bit-3.6.3-56.1
- libtdb1-32bit-3.6.3-56.1
- libwbclient0-32bit-3.6.3-56.1
- libtevent0-32bit-3.6.3-56.1
- samba-32bit-3.6.3-56.1
- libsmbclient0-32bit-3.6.3-56.1
References:
- https://www.suse.com/security/cve/CVE-2016-2125.html
- https://www.suse.com/security/cve/CVE-2016-2126.html
- https://bugzilla.suse.com/show_bug.cgi?id=1003731
- https://bugzilla.suse.com/show_bug.cgi?id=1009711
- https://bugzilla.suse.com/show_bug.cgi?id=1014441
- https://bugzilla.suse.com/show_bug.cgi?id=1014442
- https://bugzilla.suse.com/show_bug.cgi?id=975131
- https://bugzilla.suse.com/show_bug.cgi?id=978898
- https://bugzilla.suse.com/show_bug.cgi?id=993692
- https://bugzilla.suse.com/show_bug.cgi?id=997833