This update for ldb, samba fixes the following issues:
Changes in ldb:
Release ldb 2.2.2
Changes in samba:
CVE-2021-44142: Fixed an Out-of-Bound Read/Write on Samba vfs_fruit module; (bsc#1194859)
The username map [script] advice from CVE-2020-25717 advisory note has undesired side effects for the local nt token. Fallback to a SID/UID based mapping if the name based lookup fails; (bsc#1192849); (bso#14901).
Fix regression introduced by CVE-2020-25717 patches, winbindd does not start when 'allow trusted domains' is off; (bso#14899);
CVE-2020-25717: Fixed that a user on the domain can become root on domain members; (bsc#1192284); (bso#14556).
CVE-2021-23192: Fixed that dcerpc requests don't check all fragments against the first auth_state;(bsc#1192214);(bso#14875).
CVE-2016-2124: don't fallback to non spnego authentication if we require kerberos; (bsc#1014440); (bso#12444).
Update to 4.13.13
Release LDB 2.3.1 for Samba 4.14.9;(bso#14848).
Address a signifcant performance regression in database access in the AD DC since Samba 4.12;(bso#14806).
Fix CTDB flag/status update race conditions(bso#14784).
smbd: panic on force-close share during offload write; (bso#14769).
Winbind should not start if the socket path for the privileged pipe is too long;(bso#14792).
Fix 'net rpc' authentication when using the machine account; (bsc#1189017); (bso#14796);
Fix dependency problem upgrading from libndr0 to libndr1; (bsc#1189875);
Add Certificate Auto Enrollment Policy; (jsc#SLE-18456).
Update to 4.13.10
s3: smbd: Ensure POSIX default ACL is mapped into returned Windows ACL for directory handles; (bso#14708);
netcmd: Use nextfreerid() function to calculate a SID for restoring a backup; (bso#14669);
Update to 4.13.9
s3: smbd: SMB1 SMBsplwr doesn't send a reply packet on success; (bso#14696);
Fix the build on OmniOS; (bso#14288);
Update to 4.13.8
CVE-2021-20254: Fix buffer overrun in sidstounixids(); (bso#14571
Update to 4.13.7
Release with dependency on ldb version 2.2.1.
{ "binaries": [ { "libsamba-credentials0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libwbclient0": "4.13.13+git.545.5897c2d94f3-3.12.1", "samba-libs": "4.13.13+git.545.5897c2d94f3-3.12.1", "libdcerpc0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libsamdb0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libndr-nbt0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libdcerpc-binding0": "4.13.13+git.545.5897c2d94f3-3.12.1", "ctdb": "4.13.13+git.545.5897c2d94f3-3.12.1", "libndr1": "4.13.13+git.545.5897c2d94f3-3.12.1", "libldb2": "2.2.2-4.6.1", "libsamba-util0": "4.13.13+git.545.5897c2d94f3-3.12.1", "python3-ldb": "2.2.2-4.6.1", "libsamba-hostconfig0": "4.13.13+git.545.5897c2d94f3-3.12.1", "samba-winbind": "4.13.13+git.545.5897c2d94f3-3.12.1", "libsmbldap2": "4.13.13+git.545.5897c2d94f3-3.12.1", "libsamba-errors0": "4.13.13+git.545.5897c2d94f3-3.12.1", "samba-client": "4.13.13+git.545.5897c2d94f3-3.12.1", "libsmbconf0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libnetapi0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libndr-krb5pac0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libndr-standard0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libtevent-util0": "4.13.13+git.545.5897c2d94f3-3.12.1", "samba-libs-python3": "4.13.13+git.545.5897c2d94f3-3.12.1", "samba-ceph": "4.13.13+git.545.5897c2d94f3-3.12.1", "samba": "4.13.13+git.545.5897c2d94f3-3.12.1", "libsamba-passdb0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libsmbclient0": "4.13.13+git.545.5897c2d94f3-3.12.1" } ] }
{ "binaries": [ { "libsamba-credentials0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libwbclient0": "4.13.13+git.545.5897c2d94f3-3.12.1", "samba-libs": "4.13.13+git.545.5897c2d94f3-3.12.1", "libdcerpc0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libsamdb0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libndr-nbt0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libdcerpc-binding0": "4.13.13+git.545.5897c2d94f3-3.12.1", "ctdb": "4.13.13+git.545.5897c2d94f3-3.12.1", "libndr1": "4.13.13+git.545.5897c2d94f3-3.12.1", "libldb2": "2.2.2-4.6.1", "libsamba-util0": "4.13.13+git.545.5897c2d94f3-3.12.1", "python3-ldb": "2.2.2-4.6.1", "libsamba-hostconfig0": "4.13.13+git.545.5897c2d94f3-3.12.1", "samba-winbind": "4.13.13+git.545.5897c2d94f3-3.12.1", "libsmbldap2": "4.13.13+git.545.5897c2d94f3-3.12.1", "libsamba-errors0": "4.13.13+git.545.5897c2d94f3-3.12.1", "samba-client": "4.13.13+git.545.5897c2d94f3-3.12.1", "libsmbconf0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libnetapi0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libndr-krb5pac0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libndr-standard0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libtevent-util0": "4.13.13+git.545.5897c2d94f3-3.12.1", "samba-libs-python3": "4.13.13+git.545.5897c2d94f3-3.12.1", "samba-ceph": "4.13.13+git.545.5897c2d94f3-3.12.1", "samba": "4.13.13+git.545.5897c2d94f3-3.12.1", "libsamba-passdb0": "4.13.13+git.545.5897c2d94f3-3.12.1", "libsmbclient0": "4.13.13+git.545.5897c2d94f3-3.12.1" } ] }