SUSE-SU-2018:0018-1

Опубликовано: 04 янв. 2018

Источник: suse-cvrf

Описание

Security update for samba

This update for samba fixes the following issues:

CVE-2017-15275: s3: smbd: Chain code can return uninitialized memory when talloc buffer is grown; (bsc#1063008); (bso#13077);
s3/libads: fix seal/signed ldap connections so they are reused; (bsc#1016531).

Список пакетов

SUSE Linux Enterprise Point of Sale 11 SP3

ldapsmb-1.34b-94.8.1

libldb1-3.6.3-94.8.1

libsmbclient0-3.6.3-94.8.1

libtalloc2-3.6.3-94.8.1

libtdb1-3.6.3-94.8.1

libtevent0-3.6.3-94.8.1

libwbclient0-3.6.3-94.8.1

samba-3.6.3-94.8.1

samba-client-3.6.3-94.8.1

samba-doc-3.6.3-94.8.1

samba-krb-printing-3.6.3-94.8.1

samba-winbind-3.6.3-94.8.1

SUSE Linux Enterprise Server 11 SP3-LTSS

ldapsmb-1.34b-94.8.1

libldb1-3.6.3-94.8.1

libsmbclient0-3.6.3-94.8.1

libsmbclient0-32bit-3.6.3-94.8.1

libtalloc2-3.6.3-94.8.1

libtalloc2-32bit-3.6.3-94.8.1

libtdb1-3.6.3-94.8.1

libtdb1-32bit-3.6.3-94.8.1

libtevent0-3.6.3-94.8.1

libtevent0-32bit-3.6.3-94.8.1

libwbclient0-3.6.3-94.8.1

libwbclient0-32bit-3.6.3-94.8.1

samba-3.6.3-94.8.1

samba-32bit-3.6.3-94.8.1

samba-client-3.6.3-94.8.1

samba-client-32bit-3.6.3-94.8.1

samba-doc-3.6.3-94.8.1

samba-krb-printing-3.6.3-94.8.1

samba-winbind-3.6.3-94.8.1

samba-winbind-32bit-3.6.3-94.8.1

SUSE Linux Enterprise Server 11 SP3-TERADATA

ldapsmb-1.34b-94.8.1

libldb1-3.6.3-94.8.1

libsmbclient0-3.6.3-94.8.1

libsmbclient0-32bit-3.6.3-94.8.1

libtalloc2-3.6.3-94.8.1

libtalloc2-32bit-3.6.3-94.8.1

libtdb1-3.6.3-94.8.1

libtdb1-32bit-3.6.3-94.8.1

libtevent0-3.6.3-94.8.1

libtevent0-32bit-3.6.3-94.8.1

libwbclient0-3.6.3-94.8.1

libwbclient0-32bit-3.6.3-94.8.1

samba-3.6.3-94.8.1

samba-32bit-3.6.3-94.8.1

samba-client-3.6.3-94.8.1

samba-client-32bit-3.6.3-94.8.1

samba-doc-3.6.3-94.8.1

samba-krb-printing-3.6.3-94.8.1

samba-winbind-3.6.3-94.8.1

samba-winbind-32bit-3.6.3-94.8.1

SUSE Linux Enterprise Server 11 SP4

ldapsmb-1.34b-94.8.1

libldb1-3.6.3-94.8.1

libsmbclient0-3.6.3-94.8.1

libsmbclient0-32bit-3.6.3-94.8.1

libsmbclient0-x86-3.6.3-94.8.1

libtalloc2-3.6.3-94.8.1

libtalloc2-32bit-3.6.3-94.8.1

libtalloc2-x86-3.6.3-94.8.1

libtdb1-3.6.3-94.8.1

libtdb1-32bit-3.6.3-94.8.1

libtdb1-x86-3.6.3-94.8.1

libtevent0-3.6.3-94.8.1

libtevent0-32bit-3.6.3-94.8.1

libtevent0-x86-3.6.3-94.8.1

libwbclient0-3.6.3-94.8.1

libwbclient0-32bit-3.6.3-94.8.1

libwbclient0-x86-3.6.3-94.8.1

samba-3.6.3-94.8.1

samba-32bit-3.6.3-94.8.1

samba-client-3.6.3-94.8.1

samba-client-32bit-3.6.3-94.8.1

samba-client-x86-3.6.3-94.8.1

samba-doc-3.6.3-94.8.1

samba-krb-printing-3.6.3-94.8.1

samba-winbind-3.6.3-94.8.1

samba-winbind-32bit-3.6.3-94.8.1

samba-winbind-x86-3.6.3-94.8.1

samba-x86-3.6.3-94.8.1

SUSE Linux Enterprise Server for SAP Applications 11 SP4

ldapsmb-1.34b-94.8.1

libldb1-3.6.3-94.8.1

libsmbclient0-3.6.3-94.8.1

libsmbclient0-32bit-3.6.3-94.8.1

libsmbclient0-x86-3.6.3-94.8.1

libtalloc2-3.6.3-94.8.1

libtalloc2-32bit-3.6.3-94.8.1

libtalloc2-x86-3.6.3-94.8.1

libtdb1-3.6.3-94.8.1

libtdb1-32bit-3.6.3-94.8.1

libtdb1-x86-3.6.3-94.8.1

libtevent0-3.6.3-94.8.1

libtevent0-32bit-3.6.3-94.8.1

libtevent0-x86-3.6.3-94.8.1

libwbclient0-3.6.3-94.8.1

libwbclient0-32bit-3.6.3-94.8.1

libwbclient0-x86-3.6.3-94.8.1

samba-3.6.3-94.8.1

samba-32bit-3.6.3-94.8.1

samba-client-3.6.3-94.8.1

samba-client-32bit-3.6.3-94.8.1

samba-client-x86-3.6.3-94.8.1

samba-doc-3.6.3-94.8.1

samba-krb-printing-3.6.3-94.8.1

samba-winbind-3.6.3-94.8.1

samba-winbind-32bit-3.6.3-94.8.1

samba-winbind-x86-3.6.3-94.8.1

samba-x86-3.6.3-94.8.1

SUSE Linux Enterprise Software Development Kit 11 SP4

libldb-devel-3.6.3-94.8.1

libnetapi-devel-3.6.3-94.8.1

libnetapi0-3.6.3-94.8.1

libsmbclient-devel-3.6.3-94.8.1

libsmbsharemodes-devel-3.6.3-94.8.1

libsmbsharemodes0-3.6.3-94.8.1

libtalloc-devel-3.6.3-94.8.1

libtdb-devel-3.6.3-94.8.1

libtevent-devel-3.6.3-94.8.1

libwbclient-devel-3.6.3-94.8.1

samba-devel-3.6.3-94.8.1

samba-test-3.6.3-94.8.1

Ссылки

https://www.suse.com/support/update/announcement/2018/suse-su-20180018-1/
Link for SUSE-SU-2018:0018-1
https://lists.suse.com/pipermail/sle-security-updates/2018-January/003570.html
E-Mail link for SUSE-SU-2018:0018-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1016531
SUSE Bug 1016531
https://bugzilla.suse.com/1063008
SUSE Bug 1063008
https://www.suse.com/security/cve/CVE-2017-15275/
SUSE CVE CVE-2017-15275 page

Описание

Samba before 4.7.3 might allow remote attackers to obtain sensitive information by leveraging failure of the server to clear allocated heap memory.

Затронутые продукты

SUSE Linux Enterprise Point of Sale 11 SP3:ldapsmb-1.34b-94.8.1

SUSE Linux Enterprise Point of Sale 11 SP3:libldb1-3.6.3-94.8.1

SUSE Linux Enterprise Point of Sale 11 SP3:libsmbclient0-3.6.3-94.8.1

SUSE Linux Enterprise Point of Sale 11 SP3:libtalloc2-3.6.3-94.8.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-15275.html
CVE-2017-15275
https://bugzilla.suse.com/1063008
SUSE Bug 1063008
https://bugzilla.suse.com/1069666
SUSE Bug 1069666

SUSE-SU-2018:0018-1

Описание

Список пакетов

SUSE Linux Enterprise Point of Sale 11 SP3

SUSE Linux Enterprise Server 11 SP3-LTSS

SUSE Linux Enterprise Server 11 SP3-TERADATA

SUSE Linux Enterprise Server 11 SP4

SUSE Linux Enterprise Server for SAP Applications 11 SP4

SUSE Linux Enterprise Software Development Kit 11 SP4

Ссылки

Уязвимость: CVE-2017-15275

Описание

Затронутые продукты

Ссылки