Описание
Security update for Samba
Samba has been updated to fix one security issue:
* CVE-2015-0240: Don't call talloc_free on an uninitialized pointer
(bnc#917376).
Additionally, these non-security issues have been fixed:
* Realign the winbind request structure following require_membership_of
field expansion (bnc#913001).
* Reuse connections derived from DFS referrals (bso#10123,
fate#316512).
* Set domain/workgroup based on authentication callback value
(bso#11059).
* Fix spoolss error response marshalling (bso#10984).
* Fix spoolss EnumJobs and GetJob responses (bso#10905, bnc#898031).
* Fix handling of bad EnumJobs levels (bso#10898).
* Fix small memory-leak in the background print process; (bnc#899558).
* Prune idle or hung connections older than 'winbind request timeout'
(bso#3204, bnc#872912).
Security Issues:
* CVE-2015-0240
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0240>
Список пакетов
SUSE Linux Enterprise Desktop 11 SP3
libldb1-3.6.3-0.56.1
libldb1-32bit-3.6.3-0.56.1
libsmbclient0-3.6.3-0.56.1
libsmbclient0-32bit-3.6.3-0.56.1
libtalloc2-3.6.3-0.56.1
libtalloc2-32bit-3.6.3-0.56.1
libtdb1-3.6.3-0.56.1
libtdb1-32bit-3.6.3-0.56.1
libtevent0-3.6.3-0.56.1
libtevent0-32bit-3.6.3-0.56.1
libwbclient0-3.6.3-0.56.1
libwbclient0-32bit-3.6.3-0.56.1
samba-3.6.3-0.56.1
samba-32bit-3.6.3-0.56.1
samba-client-3.6.3-0.56.1
samba-client-32bit-3.6.3-0.56.1
samba-doc-3.6.3-0.56.1
samba-krb-printing-3.6.3-0.56.1
samba-winbind-3.6.3-0.56.1
samba-winbind-32bit-3.6.3-0.56.1
SUSE Linux Enterprise Server 11 SP3
ldapsmb-1.34b-12.56.1
libldb1-3.6.3-0.56.1
libsmbclient0-3.6.3-0.56.1
libsmbclient0-32bit-3.6.3-0.56.1
libsmbclient0-x86-3.6.3-0.56.1
libtalloc2-3.6.3-0.56.1
libtalloc2-32bit-3.6.3-0.56.1
libtalloc2-x86-3.6.3-0.56.1
libtdb1-3.6.3-0.56.1
libtdb1-32bit-3.6.3-0.56.1
libtdb1-x86-3.6.3-0.56.1
libtevent0-3.6.3-0.56.1
libtevent0-32bit-3.6.3-0.56.1
libwbclient0-3.6.3-0.56.1
libwbclient0-32bit-3.6.3-0.56.1
libwbclient0-x86-3.6.3-0.56.1
samba-3.6.3-0.56.1
samba-32bit-3.6.3-0.56.1
samba-client-3.6.3-0.56.1
samba-client-32bit-3.6.3-0.56.1
samba-client-x86-3.6.3-0.56.1
samba-doc-3.6.3-0.56.1
samba-krb-printing-3.6.3-0.56.1
samba-winbind-3.6.3-0.56.1
samba-winbind-32bit-3.6.3-0.56.1
samba-winbind-x86-3.6.3-0.56.1
samba-x86-3.6.3-0.56.1
SUSE Linux Enterprise Server 11 SP3-TERADATA
ldapsmb-1.34b-12.56.1
libldb1-3.6.3-0.56.1
libsmbclient0-3.6.3-0.56.1
libsmbclient0-32bit-3.6.3-0.56.1
libsmbclient0-x86-3.6.3-0.56.1
libtalloc2-3.6.3-0.56.1
libtalloc2-32bit-3.6.3-0.56.1
libtalloc2-x86-3.6.3-0.56.1
libtdb1-3.6.3-0.56.1
libtdb1-32bit-3.6.3-0.56.1
libtdb1-x86-3.6.3-0.56.1
libtevent0-3.6.3-0.56.1
libtevent0-32bit-3.6.3-0.56.1
libwbclient0-3.6.3-0.56.1
libwbclient0-32bit-3.6.3-0.56.1
libwbclient0-x86-3.6.3-0.56.1
samba-3.6.3-0.56.1
samba-32bit-3.6.3-0.56.1
samba-client-3.6.3-0.56.1
samba-client-32bit-3.6.3-0.56.1
samba-client-x86-3.6.3-0.56.1
samba-doc-3.6.3-0.56.1
samba-krb-printing-3.6.3-0.56.1
samba-winbind-3.6.3-0.56.1
samba-winbind-32bit-3.6.3-0.56.1
samba-winbind-x86-3.6.3-0.56.1
samba-x86-3.6.3-0.56.1
SUSE Linux Enterprise Server for SAP Applications 11 SP3
ldapsmb-1.34b-12.56.1
libldb1-3.6.3-0.56.1
libsmbclient0-3.6.3-0.56.1
libsmbclient0-32bit-3.6.3-0.56.1
libsmbclient0-x86-3.6.3-0.56.1
libtalloc2-3.6.3-0.56.1
libtalloc2-32bit-3.6.3-0.56.1
libtalloc2-x86-3.6.3-0.56.1
libtdb1-3.6.3-0.56.1
libtdb1-32bit-3.6.3-0.56.1
libtdb1-x86-3.6.3-0.56.1
libtevent0-3.6.3-0.56.1
libtevent0-32bit-3.6.3-0.56.1
libwbclient0-3.6.3-0.56.1
libwbclient0-32bit-3.6.3-0.56.1
libwbclient0-x86-3.6.3-0.56.1
samba-3.6.3-0.56.1
samba-32bit-3.6.3-0.56.1
samba-client-3.6.3-0.56.1
samba-client-32bit-3.6.3-0.56.1
samba-client-x86-3.6.3-0.56.1
samba-doc-3.6.3-0.56.1
samba-krb-printing-3.6.3-0.56.1
samba-winbind-3.6.3-0.56.1
samba-winbind-32bit-3.6.3-0.56.1
samba-winbind-x86-3.6.3-0.56.1
samba-x86-3.6.3-0.56.1
SUSE Linux Enterprise Software Development Kit 11 SP3
libldb-devel-3.6.3-0.56.1
libnetapi-devel-3.6.3-0.56.1
libnetapi0-3.6.3-0.56.1
libsmbclient-devel-3.6.3-0.56.1
libsmbsharemodes-devel-3.6.3-0.56.1
libsmbsharemodes0-3.6.3-0.56.1
libtalloc-devel-3.6.3-0.56.1
libtdb-devel-3.6.3-0.56.1
libtevent-devel-3.6.3-0.56.1
libwbclient-devel-3.6.3-0.56.1
samba-devel-3.6.3-0.56.1
Ссылки
- Link for SUSE-SU-2015:0371-1
- E-Mail link for SUSE-SU-2015:0371-1
- SUSE Security Ratings
- SUSE Bug 872912
- SUSE Bug 898031
- SUSE Bug 899558
- SUSE Bug 913001
- SUSE Bug 917376
- SUSE CVE CVE-2015-0240 page
Описание
The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25, 4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized stack pointer, which allows remote attackers to execute arbitrary code via crafted Netlogon packets that use the ServerPasswordSet RPC API, as demonstrated by packets reaching the _netr_ServerPasswordSet function in rpc_server/netlogon/srv_netlog_nt.c.
Затронутые продукты
SUSE Linux Enterprise Desktop 11 SP3:libldb1-3.6.3-0.56.1
SUSE Linux Enterprise Desktop 11 SP3:libldb1-32bit-3.6.3-0.56.1
SUSE Linux Enterprise Desktop 11 SP3:libsmbclient0-3.6.3-0.56.1
SUSE Linux Enterprise Desktop 11 SP3:libsmbclient0-32bit-3.6.3-0.56.1
Ссылки
- CVE-2015-0240
- SUSE Bug 917376