SUSE-SU-2015:0371-1

Source
https://www.suse.com/support/update/announcement/2015/suse-su-20150371-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2015:0371-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2015:0371-1
Related
Published
2015-02-17T19:39:13Z
Modified
2015-02-17T19:39:13Z
Summary
Security update for Samba
Details

Samba has been updated to fix one security issue:

* CVE-2015-0240: Don't call talloc_free on an uninitialized pointer
  (bnc#917376).

Additionally, these non-security issues have been fixed:

* Realign the winbind request structure following require_membership_of
  field expansion (bnc#913001).
* Reuse connections derived from DFS referrals (bso#10123,
  fate#316512).
* Set domain/workgroup based on authentication callback value
  (bso#11059).
* Fix spoolss error response marshalling (bso#10984).
* Fix spoolss EnumJobs and GetJob responses (bso#10905, bnc#898031).
* Fix handling of bad EnumJobs levels (bso#10898).
* Fix small memory-leak in the background print process; (bnc#899558).
* Prune idle or hung connections older than 'winbind request timeout'
  (bso#3204, bnc#872912).

Security Issues:

* CVE-2015-0240
  <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0240>
References

Affected packages