SUSE-SU-2017:1216-1

Опубликовано: 08 мая 2017

Источник: suse-cvrf

Описание

Security update for samba

This update for samba fixes the following issues:

Security issue fixed:

CVE-2017-2619: symlink race permits opening files outside share directory (bsc#1027147). For SUSE Linux Enterprise 11 SP4 this is a re-issue of the update, a regression in the fix has been addressed (bsc#1036283, bso#12721).

Список пакетов

SUSE Linux Enterprise Point of Sale 11 SP3

ldapsmb-1.34b-90.1

libldb1-3.6.3-90.1

libsmbclient0-3.6.3-90.1

libtalloc2-3.6.3-90.1

libtdb1-3.6.3-90.1

libtevent0-3.6.3-90.1

libwbclient0-3.6.3-90.1

samba-3.6.3-90.1

samba-client-3.6.3-90.1

samba-doc-3.6.3-90.1

samba-krb-printing-3.6.3-90.1

samba-winbind-3.6.3-90.1

SUSE Linux Enterprise Server 11 SP3-LTSS

ldapsmb-1.34b-90.1

libldb1-3.6.3-90.1

libsmbclient0-3.6.3-90.1

libsmbclient0-32bit-3.6.3-90.1

libtalloc2-3.6.3-90.1

libtalloc2-32bit-3.6.3-90.1

libtdb1-3.6.3-90.1

libtdb1-32bit-3.6.3-90.1

libtevent0-3.6.3-90.1

libtevent0-32bit-3.6.3-90.1

libwbclient0-3.6.3-90.1

libwbclient0-32bit-3.6.3-90.1

samba-3.6.3-90.1

samba-32bit-3.6.3-90.1

samba-client-3.6.3-90.1

samba-client-32bit-3.6.3-90.1

samba-doc-3.6.3-90.1

samba-krb-printing-3.6.3-90.1

samba-winbind-3.6.3-90.1

samba-winbind-32bit-3.6.3-90.1

SUSE Linux Enterprise Server 11 SP3-TERADATA

ldapsmb-1.34b-90.1

libldb1-3.6.3-90.1

libsmbclient0-3.6.3-90.1

libsmbclient0-32bit-3.6.3-90.1

libtalloc2-3.6.3-90.1

libtalloc2-32bit-3.6.3-90.1

libtdb1-3.6.3-90.1

libtdb1-32bit-3.6.3-90.1

libtevent0-3.6.3-90.1

libtevent0-32bit-3.6.3-90.1

libwbclient0-3.6.3-90.1

libwbclient0-32bit-3.6.3-90.1

samba-3.6.3-90.1

samba-32bit-3.6.3-90.1

samba-client-3.6.3-90.1

samba-client-32bit-3.6.3-90.1

samba-doc-3.6.3-90.1

samba-krb-printing-3.6.3-90.1

samba-winbind-3.6.3-90.1

samba-winbind-32bit-3.6.3-90.1

SUSE Linux Enterprise Server 11 SP4

ldapsmb-1.34b-90.1

libldb1-3.6.3-90.1

libsmbclient0-3.6.3-90.1

libsmbclient0-32bit-3.6.3-90.1

libsmbclient0-x86-3.6.3-90.1

libtalloc2-3.6.3-90.1

libtalloc2-32bit-3.6.3-90.1

libtalloc2-x86-3.6.3-90.1

libtdb1-3.6.3-90.1

libtdb1-32bit-3.6.3-90.1

libtdb1-x86-3.6.3-90.1

libtevent0-3.6.3-90.1

libtevent0-32bit-3.6.3-90.1

libtevent0-x86-3.6.3-90.1

libwbclient0-3.6.3-90.1

libwbclient0-32bit-3.6.3-90.1

libwbclient0-x86-3.6.3-90.1

samba-3.6.3-90.1

samba-32bit-3.6.3-90.1

samba-client-3.6.3-90.1

samba-client-32bit-3.6.3-90.1

samba-client-x86-3.6.3-90.1

samba-doc-3.6.3-90.1

samba-krb-printing-3.6.3-90.1

samba-winbind-3.6.3-90.1

samba-winbind-32bit-3.6.3-90.1

samba-winbind-x86-3.6.3-90.1

samba-x86-3.6.3-90.1

SUSE Linux Enterprise Server for SAP Applications 11 SP4

ldapsmb-1.34b-90.1

libldb1-3.6.3-90.1

libsmbclient0-3.6.3-90.1

libsmbclient0-32bit-3.6.3-90.1

libsmbclient0-x86-3.6.3-90.1

libtalloc2-3.6.3-90.1

libtalloc2-32bit-3.6.3-90.1

libtalloc2-x86-3.6.3-90.1

libtdb1-3.6.3-90.1

libtdb1-32bit-3.6.3-90.1

libtdb1-x86-3.6.3-90.1

libtevent0-3.6.3-90.1

libtevent0-32bit-3.6.3-90.1

libtevent0-x86-3.6.3-90.1

libwbclient0-3.6.3-90.1

libwbclient0-32bit-3.6.3-90.1

libwbclient0-x86-3.6.3-90.1

samba-3.6.3-90.1

samba-32bit-3.6.3-90.1

samba-client-3.6.3-90.1

samba-client-32bit-3.6.3-90.1

samba-client-x86-3.6.3-90.1

samba-doc-3.6.3-90.1

samba-krb-printing-3.6.3-90.1

samba-winbind-3.6.3-90.1

samba-winbind-32bit-3.6.3-90.1

samba-winbind-x86-3.6.3-90.1

samba-x86-3.6.3-90.1

SUSE Linux Enterprise Software Development Kit 11 SP4

libldb-devel-3.6.3-90.1

libnetapi-devel-3.6.3-90.1

libnetapi0-3.6.3-90.1

libsmbclient-devel-3.6.3-90.1

libsmbsharemodes-devel-3.6.3-90.1

libsmbsharemodes0-3.6.3-90.1

libtalloc-devel-3.6.3-90.1

libtdb-devel-3.6.3-90.1

libtevent-devel-3.6.3-90.1

libwbclient-devel-3.6.3-90.1

samba-devel-3.6.3-90.1

samba-test-3.6.3-90.1

SUSE OpenStack Cloud 5

ldapsmb-1.34b-90.1

libldb1-3.6.3-90.1

libsmbclient0-3.6.3-90.1

libsmbclient0-32bit-3.6.3-90.1

libtalloc2-3.6.3-90.1

libtalloc2-32bit-3.6.3-90.1

libtdb1-3.6.3-90.1

libtdb1-32bit-3.6.3-90.1

libtevent0-3.6.3-90.1

libtevent0-32bit-3.6.3-90.1

libwbclient0-3.6.3-90.1

libwbclient0-32bit-3.6.3-90.1

samba-3.6.3-90.1

samba-32bit-3.6.3-90.1

samba-client-3.6.3-90.1

samba-client-32bit-3.6.3-90.1

samba-doc-3.6.3-90.1

samba-krb-printing-3.6.3-90.1

samba-winbind-3.6.3-90.1

samba-winbind-32bit-3.6.3-90.1

Ссылки

https://www.suse.com/support/update/announcement/2017/suse-su-20171216-1/
Link for SUSE-SU-2017:1216-1
https://lists.suse.com/pipermail/sle-security-updates/2017-May/002850.html
E-Mail link for SUSE-SU-2017:1216-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1027147
SUSE Bug 1027147
https://bugzilla.suse.com/1036283
SUSE Bug 1036283
https://www.suse.com/security/cve/CVE-2017-2619/
SUSE CVE CVE-2017-2619 page

Описание

Samba before versions 4.6.1, 4.5.7 and 4.4.11 are vulnerable to a malicious client using a symlink race to allow access to areas of the server file system not exported under the share definition.

Затронутые продукты

SUSE Linux Enterprise Point of Sale 11 SP3:ldapsmb-1.34b-90.1

SUSE Linux Enterprise Point of Sale 11 SP3:libldb1-3.6.3-90.1

SUSE Linux Enterprise Point of Sale 11 SP3:libsmbclient0-3.6.3-90.1

SUSE Linux Enterprise Point of Sale 11 SP3:libtalloc2-3.6.3-90.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-2619.html
CVE-2017-2619
https://bugzilla.suse.com/1027147
SUSE Bug 1027147
https://bugzilla.suse.com/1036283
SUSE Bug 1036283
https://bugzilla.suse.com/1054017
SUSE Bug 1054017

SUSE-SU-2017:1216-1

Описание

Список пакетов

SUSE Linux Enterprise Point of Sale 11 SP3

SUSE Linux Enterprise Server 11 SP3-LTSS

SUSE Linux Enterprise Server 11 SP3-TERADATA

SUSE Linux Enterprise Server 11 SP4

SUSE Linux Enterprise Server for SAP Applications 11 SP4

SUSE Linux Enterprise Software Development Kit 11 SP4

SUSE OpenStack Cloud 5

Ссылки

Уязвимость: CVE-2017-2619

Описание

Затронутые продукты

Ссылки