SUSE-SU-2016:0905-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2016:0905-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2016:0905-1
Related
Published
2016-03-29T11:30:33Z
Modified
2016-03-29T11:30:33Z
Summary
Security update for samba
Details

This update for samba fixes the following issues:

Security issue fixed: - CVE-2015-7560: Getting and setting Windows ACLs on symlinks can change permissions on link target; (bso#11648); (bsc#968222).

Bugs fixed: - Fix leaking memory in libsmbclient: Add missing talloc stackframe; (bso#11177); (bsc#967017). - Ensure samlogon fallback requests are rerouted after kerberos failure; (bsc#953382). - Ensure attempt to ssh into locked account triggers 'Your account is disabled.....' to the console; (bsc#953382). - Make the winbind package depend on the matching libwbclient version and vice versa; (bsc#936909).

References

Affected packages

SUSE:Linux Enterprise Server 11 SP2-LTSS / samba

Package

Name
samba
Purl
purl:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.6.3-48.2

Ecosystem specific 

{
    "binaries": [
        {
            "libtevent0-32bit": "3.6.3-48.2",
            "samba": "3.6.3-48.2",
            "libwbclient0-32bit": "3.6.3-48.2",
            "samba-winbind-32bit": "3.6.3-48.2",
            "samba-doc": "3.6.3-48.2",
            "samba-krb-printing": "3.6.3-48.2",
            "libtdb1-32bit": "3.6.3-48.2",
            "libtalloc2-32bit": "3.6.3-48.2",
            "libldb1": "3.6.3-48.2",
            "samba-client": "3.6.3-48.2",
            "libtevent0": "3.6.3-48.2",
            "ldapsmb": "1.34b-48.2",
            "samba-client-32bit": "3.6.3-48.2",
            "libtalloc2": "3.6.3-48.2",
            "libtdb1": "3.6.3-48.2",
            "samba-32bit": "3.6.3-48.2",
            "samba-winbind": "3.6.3-48.2",
            "libwbclient0": "3.6.3-48.2",
            "libsmbclient0-32bit": "3.6.3-48.2",
            "libsmbclient0": "3.6.3-48.2"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP2-LTSS / samba-doc

Package

Name
samba-doc
Purl
purl:rpm/suse/samba-doc&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.6.3-48.2

Ecosystem specific 

{
    "binaries": [
        {
            "libtevent0-32bit": "3.6.3-48.2",
            "samba": "3.6.3-48.2",
            "libwbclient0-32bit": "3.6.3-48.2",
            "samba-winbind-32bit": "3.6.3-48.2",
            "samba-doc": "3.6.3-48.2",
            "samba-krb-printing": "3.6.3-48.2",
            "libtdb1-32bit": "3.6.3-48.2",
            "libtalloc2-32bit": "3.6.3-48.2",
            "libldb1": "3.6.3-48.2",
            "samba-client": "3.6.3-48.2",
            "libtevent0": "3.6.3-48.2",
            "ldapsmb": "1.34b-48.2",
            "samba-client-32bit": "3.6.3-48.2",
            "libtalloc2": "3.6.3-48.2",
            "libtdb1": "3.6.3-48.2",
            "samba-32bit": "3.6.3-48.2",
            "samba-winbind": "3.6.3-48.2",
            "libwbclient0": "3.6.3-48.2",
            "libsmbclient0-32bit": "3.6.3-48.2",
            "libsmbclient0": "3.6.3-48.2"
        }
    ]
}