SUSE-SU-2016:0905-1

See a problem?
Please try reporting it to the source first.

Source

https://www.suse.com/support/update/announcement/2016/suse-su-20160905-1/

Import Source

https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2016:0905-1.json

JSON Data

https://api.osv.dev/v1/vulns/SUSE-SU-2016:0905-1

Upstream

CVE-2015-7560

Related

CVE-2015-7560

Published

2016-03-29T11:30:33Z

Modified

2025-05-02T04:04:46.058669Z

Summary

Security update for samba

Details

This update for samba fixes the following issues:

Security issue fixed: - CVE-2015-7560: Getting and setting Windows ACLs on symlinks can change permissions on link target; (bso#11648); (bsc#968222).

Bugs fixed: - Fix leaking memory in libsmbclient: Add missing talloc stackframe; (bso#11177); (bsc#967017). - Ensure samlogon fallback requests are rerouted after kerberos failure; (bsc#953382). - Ensure attempt to ssh into locked account triggers 'Your account is disabled.....' to the console; (bsc#953382). - Make the winbind package depend on the matching libwbclient version and vice versa; (bsc#936909).

References

Affected packages

SUSE:Linux Enterprise Server 11 SP2-LTSS / samba

Package

Name: samba
Purl: pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.6.3-48.2

Ecosystem specific

{
    "binaries": [
        {
            "samba-doc": "3.6.3-48.2",
            "samba": "3.6.3-48.2",
            "samba-32bit": "3.6.3-48.2",
            "libtalloc2": "3.6.3-48.2",
            "samba-winbind-32bit": "3.6.3-48.2",
            "libtdb1": "3.6.3-48.2",
            "samba-winbind": "3.6.3-48.2",
            "libwbclient0": "3.6.3-48.2",
            "samba-client-32bit": "3.6.3-48.2",
            "libsmbclient0-32bit": "3.6.3-48.2",
            "samba-client": "3.6.3-48.2",
            "libldb1": "3.6.3-48.2",
            "libwbclient0-32bit": "3.6.3-48.2",
            "libtevent0": "3.6.3-48.2",
            "libtdb1-32bit": "3.6.3-48.2",
            "libtalloc2-32bit": "3.6.3-48.2",
            "ldapsmb": "1.34b-48.2",
            "libtevent0-32bit": "3.6.3-48.2",
            "samba-krb-printing": "3.6.3-48.2",
            "libsmbclient0": "3.6.3-48.2"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP2-LTSS / samba-doc

Package

Name: samba-doc
Purl: pkg:rpm/suse/samba-doc&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.6.3-48.2

Ecosystem specific

{
    "binaries": [
        {
            "samba-doc": "3.6.3-48.2",
            "samba": "3.6.3-48.2",
            "samba-32bit": "3.6.3-48.2",
            "libtalloc2": "3.6.3-48.2",
            "samba-winbind-32bit": "3.6.3-48.2",
            "libtdb1": "3.6.3-48.2",
            "samba-winbind": "3.6.3-48.2",
            "libwbclient0": "3.6.3-48.2",
            "samba-client-32bit": "3.6.3-48.2",
            "libsmbclient0-32bit": "3.6.3-48.2",
            "samba-client": "3.6.3-48.2",
            "libldb1": "3.6.3-48.2",
            "libwbclient0-32bit": "3.6.3-48.2",
            "libtevent0": "3.6.3-48.2",
            "libtdb1-32bit": "3.6.3-48.2",
            "libtalloc2-32bit": "3.6.3-48.2",
            "ldapsmb": "1.34b-48.2",
            "libtevent0-32bit": "3.6.3-48.2",
            "samba-krb-printing": "3.6.3-48.2",
            "libsmbclient0": "3.6.3-48.2"
        }
    ]
}