Описание
Security update for samba
This update for samba fixes the following issues:
Security issue fixed:
- CVE-2015-7560: Getting and setting Windows ACLs on symlinks can change permissions on link target; (bso#11648); (bsc#968222).
Bug fixed:
- Fix leaking memory in libsmbclient: Add missing talloc stackframe; (bso#11177); (bsc#967017).
Список пакетов
SUSE Linux Enterprise Desktop 11 SP4
libldb1-3.6.3-67.2
libldb1-32bit-3.6.3-67.2
libsmbclient0-3.6.3-67.2
libsmbclient0-32bit-3.6.3-67.2
libtalloc2-3.6.3-67.2
libtalloc2-32bit-3.6.3-67.2
libtdb1-3.6.3-67.2
libtdb1-32bit-3.6.3-67.2
libtevent0-3.6.3-67.2
libtevent0-32bit-3.6.3-67.2
libwbclient0-3.6.3-67.2
libwbclient0-32bit-3.6.3-67.2
samba-3.6.3-67.2
samba-32bit-3.6.3-67.2
samba-client-3.6.3-67.2
samba-client-32bit-3.6.3-67.2
samba-doc-3.6.3-67.2
samba-krb-printing-3.6.3-67.2
samba-winbind-3.6.3-67.2
samba-winbind-32bit-3.6.3-67.2
SUSE Linux Enterprise Server 11 SP4
ldapsmb-1.34b-67.2
libldb1-3.6.3-67.2
libsmbclient0-3.6.3-67.2
libsmbclient0-32bit-3.6.3-67.2
libsmbclient0-x86-3.6.3-67.2
libtalloc2-3.6.3-67.2
libtalloc2-32bit-3.6.3-67.2
libtalloc2-x86-3.6.3-67.2
libtdb1-3.6.3-67.2
libtdb1-32bit-3.6.3-67.2
libtdb1-x86-3.6.3-67.2
libtevent0-3.6.3-67.2
libtevent0-32bit-3.6.3-67.2
libtevent0-x86-3.6.3-67.2
libwbclient0-3.6.3-67.2
libwbclient0-32bit-3.6.3-67.2
libwbclient0-x86-3.6.3-67.2
samba-3.6.3-67.2
samba-32bit-3.6.3-67.2
samba-client-3.6.3-67.2
samba-client-32bit-3.6.3-67.2
samba-client-x86-3.6.3-67.2
samba-doc-3.6.3-67.2
samba-krb-printing-3.6.3-67.2
samba-winbind-3.6.3-67.2
samba-winbind-32bit-3.6.3-67.2
samba-winbind-x86-3.6.3-67.2
samba-x86-3.6.3-67.2
SUSE Linux Enterprise Server for SAP Applications 11 SP4
ldapsmb-1.34b-67.2
libldb1-3.6.3-67.2
libsmbclient0-3.6.3-67.2
libsmbclient0-32bit-3.6.3-67.2
libsmbclient0-x86-3.6.3-67.2
libtalloc2-3.6.3-67.2
libtalloc2-32bit-3.6.3-67.2
libtalloc2-x86-3.6.3-67.2
libtdb1-3.6.3-67.2
libtdb1-32bit-3.6.3-67.2
libtdb1-x86-3.6.3-67.2
libtevent0-3.6.3-67.2
libtevent0-32bit-3.6.3-67.2
libtevent0-x86-3.6.3-67.2
libwbclient0-3.6.3-67.2
libwbclient0-32bit-3.6.3-67.2
libwbclient0-x86-3.6.3-67.2
samba-3.6.3-67.2
samba-32bit-3.6.3-67.2
samba-client-3.6.3-67.2
samba-client-32bit-3.6.3-67.2
samba-client-x86-3.6.3-67.2
samba-doc-3.6.3-67.2
samba-krb-printing-3.6.3-67.2
samba-winbind-3.6.3-67.2
samba-winbind-32bit-3.6.3-67.2
samba-winbind-x86-3.6.3-67.2
samba-x86-3.6.3-67.2
SUSE Linux Enterprise Software Development Kit 11 SP4
libldb-devel-3.6.3-67.2
libnetapi-devel-3.6.3-67.2
libnetapi0-3.6.3-67.2
libsmbclient-devel-3.6.3-67.2
libsmbsharemodes-devel-3.6.3-67.2
libsmbsharemodes0-3.6.3-67.2
libtalloc-devel-3.6.3-67.2
libtdb-devel-3.6.3-67.2
libtevent-devel-3.6.3-67.2
libwbclient-devel-3.6.3-67.2
samba-devel-3.6.3-67.2
samba-test-3.6.3-67.2
Ссылки
- Link for SUSE-SU-2016:0837-1
- E-Mail link for SUSE-SU-2016:0837-1
- SUSE Security Ratings
- SUSE Bug 967017
- SUSE Bug 968222
- SUSE CVE CVE-2015-7560 page
Описание
The SMB1 implementation in smbd in Samba 3.x and 4.x before 4.1.23, 4.2.x before 4.2.9, 4.3.x before 4.3.6, and 4.4.x before 4.4.0rc4 allows remote authenticated users to modify arbitrary ACLs by using a UNIX SMB1 call to create a symlink, and then using a non-UNIX SMB1 call to write to the ACL content.
Затронутые продукты
SUSE Linux Enterprise Desktop 11 SP4:libldb1-3.6.3-67.2
SUSE Linux Enterprise Desktop 11 SP4:libldb1-32bit-3.6.3-67.2
SUSE Linux Enterprise Desktop 11 SP4:libsmbclient0-3.6.3-67.2
SUSE Linux Enterprise Desktop 11 SP4:libsmbclient0-32bit-3.6.3-67.2
Ссылки
- CVE-2015-7560
- SUSE Bug 968222