Описание
Security update for samba, talloc, tevent
Samba was updated to version 4.6.13 to fix several bugs. (bsc#1084191)
Security issue fixed:
- CVE-2018-1050: DOS vulnerability when SPOOLSS is run externally (bsc#1081741).
The library talloc was updated to version 2.1.10:
- build, documentation and python3 improvements
The library tevent was updated to version 0.9.34 (bsc#1069666);
- Remove unused select backend
- Fix a race condition in tevent_threaded_schedule_immediate(); (bso#13130);
- make tevent_req_print() more robust against crashes
- Fix mutex locking in tevent_threaded_context_destructor().
- Re-init threading in tevent_re_initialise().
- Include the finish location in tevent_req_default_print().
Список пакетов
SUSE Enterprise Storage 5
ctdb-4.6.13+git.72.2a684235f41-3.21.3
samba-ceph-4.6.13+git.72.2a684235f41-3.21.3
SUSE Linux Enterprise Desktop 12 SP3
libdcerpc-binding0-4.6.13+git.72.2a684235f41-3.21.3
libdcerpc-binding0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libdcerpc0-4.6.13+git.72.2a684235f41-3.21.3
libdcerpc0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libndr-krb5pac0-4.6.13+git.72.2a684235f41-3.21.3
libndr-krb5pac0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libndr-nbt0-4.6.13+git.72.2a684235f41-3.21.3
libndr-nbt0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libndr-standard0-4.6.13+git.72.2a684235f41-3.21.3
libndr-standard0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libndr0-4.6.13+git.72.2a684235f41-3.21.3
libndr0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libnetapi0-4.6.13+git.72.2a684235f41-3.21.3
libnetapi0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-credentials0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-credentials0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-errors0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-errors0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-hostconfig0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-hostconfig0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-passdb0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-passdb0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-util0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-util0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamdb0-4.6.13+git.72.2a684235f41-3.21.3
libsamdb0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsmbclient0-4.6.13+git.72.2a684235f41-3.21.3
libsmbclient0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsmbconf0-4.6.13+git.72.2a684235f41-3.21.3
libsmbconf0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsmbldap0-4.6.13+git.72.2a684235f41-3.21.3
libsmbldap0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libtalloc2-2.1.10-3.3.2
libtalloc2-32bit-2.1.10-3.3.2
libtevent-util0-4.6.13+git.72.2a684235f41-3.21.3
libtevent-util0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libtevent0-0.9.34-3.3.2
libtevent0-32bit-0.9.34-3.3.2
libwbclient0-4.6.13+git.72.2a684235f41-3.21.3
libwbclient0-32bit-4.6.13+git.72.2a684235f41-3.21.3
python-talloc-2.1.10-3.3.2
python-talloc-32bit-2.1.10-3.3.2
samba-4.6.13+git.72.2a684235f41-3.21.3
samba-client-4.6.13+git.72.2a684235f41-3.21.3
samba-client-32bit-4.6.13+git.72.2a684235f41-3.21.3
samba-doc-4.6.13+git.72.2a684235f41-3.21.3
samba-libs-4.6.13+git.72.2a684235f41-3.21.3
samba-libs-32bit-4.6.13+git.72.2a684235f41-3.21.3
samba-winbind-4.6.13+git.72.2a684235f41-3.21.3
samba-winbind-32bit-4.6.13+git.72.2a684235f41-3.21.3
SUSE Linux Enterprise High Availability Extension 12 SP3
ctdb-4.6.13+git.72.2a684235f41-3.21.3
SUSE Linux Enterprise Server 12 SP3
libdcerpc-binding0-4.6.13+git.72.2a684235f41-3.21.3
libdcerpc-binding0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libdcerpc0-4.6.13+git.72.2a684235f41-3.21.3
libdcerpc0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libndr-krb5pac0-4.6.13+git.72.2a684235f41-3.21.3
libndr-krb5pac0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libndr-nbt0-4.6.13+git.72.2a684235f41-3.21.3
libndr-nbt0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libndr-standard0-4.6.13+git.72.2a684235f41-3.21.3
libndr-standard0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libndr0-4.6.13+git.72.2a684235f41-3.21.3
libndr0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libnetapi0-4.6.13+git.72.2a684235f41-3.21.3
libnetapi0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-credentials0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-credentials0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-errors0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-errors0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-hostconfig0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-hostconfig0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-passdb0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-passdb0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-util0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-util0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamdb0-4.6.13+git.72.2a684235f41-3.21.3
libsamdb0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsmbclient0-4.6.13+git.72.2a684235f41-3.21.3
libsmbclient0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsmbconf0-4.6.13+git.72.2a684235f41-3.21.3
libsmbconf0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsmbldap0-4.6.13+git.72.2a684235f41-3.21.3
libsmbldap0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libtalloc2-2.1.10-3.3.2
libtalloc2-32bit-2.1.10-3.3.2
libtevent-util0-4.6.13+git.72.2a684235f41-3.21.3
libtevent-util0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libtevent0-0.9.34-3.3.2
libtevent0-32bit-0.9.34-3.3.2
libwbclient0-4.6.13+git.72.2a684235f41-3.21.3
libwbclient0-32bit-4.6.13+git.72.2a684235f41-3.21.3
python-talloc-2.1.10-3.3.2
python-talloc-32bit-2.1.10-3.3.2
samba-4.6.13+git.72.2a684235f41-3.21.3
samba-client-4.6.13+git.72.2a684235f41-3.21.3
samba-client-32bit-4.6.13+git.72.2a684235f41-3.21.3
samba-doc-4.6.13+git.72.2a684235f41-3.21.3
samba-libs-4.6.13+git.72.2a684235f41-3.21.3
samba-libs-32bit-4.6.13+git.72.2a684235f41-3.21.3
samba-winbind-4.6.13+git.72.2a684235f41-3.21.3
samba-winbind-32bit-4.6.13+git.72.2a684235f41-3.21.3
SUSE Linux Enterprise Server for SAP Applications 12 SP3
libdcerpc-binding0-4.6.13+git.72.2a684235f41-3.21.3
libdcerpc-binding0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libdcerpc0-4.6.13+git.72.2a684235f41-3.21.3
libdcerpc0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libndr-krb5pac0-4.6.13+git.72.2a684235f41-3.21.3
libndr-krb5pac0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libndr-nbt0-4.6.13+git.72.2a684235f41-3.21.3
libndr-nbt0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libndr-standard0-4.6.13+git.72.2a684235f41-3.21.3
libndr-standard0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libndr0-4.6.13+git.72.2a684235f41-3.21.3
libndr0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libnetapi0-4.6.13+git.72.2a684235f41-3.21.3
libnetapi0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-credentials0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-credentials0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-errors0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-errors0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-hostconfig0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-hostconfig0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-passdb0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-passdb0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamba-util0-4.6.13+git.72.2a684235f41-3.21.3
libsamba-util0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsamdb0-4.6.13+git.72.2a684235f41-3.21.3
libsamdb0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsmbclient0-4.6.13+git.72.2a684235f41-3.21.3
libsmbclient0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsmbconf0-4.6.13+git.72.2a684235f41-3.21.3
libsmbconf0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libsmbldap0-4.6.13+git.72.2a684235f41-3.21.3
libsmbldap0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libtalloc2-2.1.10-3.3.2
libtalloc2-32bit-2.1.10-3.3.2
libtevent-util0-4.6.13+git.72.2a684235f41-3.21.3
libtevent-util0-32bit-4.6.13+git.72.2a684235f41-3.21.3
libtevent0-0.9.34-3.3.2
libtevent0-32bit-0.9.34-3.3.2
libwbclient0-4.6.13+git.72.2a684235f41-3.21.3
libwbclient0-32bit-4.6.13+git.72.2a684235f41-3.21.3
python-talloc-2.1.10-3.3.2
python-talloc-32bit-2.1.10-3.3.2
samba-4.6.13+git.72.2a684235f41-3.21.3
samba-client-4.6.13+git.72.2a684235f41-3.21.3
samba-client-32bit-4.6.13+git.72.2a684235f41-3.21.3
samba-doc-4.6.13+git.72.2a684235f41-3.21.3
samba-libs-4.6.13+git.72.2a684235f41-3.21.3
samba-libs-32bit-4.6.13+git.72.2a684235f41-3.21.3
samba-winbind-4.6.13+git.72.2a684235f41-3.21.3
samba-winbind-32bit-4.6.13+git.72.2a684235f41-3.21.3
SUSE Linux Enterprise Software Development Kit 12 SP3
libsmbclient-devel-4.6.13+git.72.2a684235f41-3.21.3
libtalloc-devel-2.1.10-3.3.2
libtevent-devel-0.9.34-3.3.2
libwbclient-devel-4.6.13+git.72.2a684235f41-3.21.3
python-talloc-devel-2.1.10-3.3.2
python-tevent-0.9.34-3.3.2
Ссылки
- Link for SUSE-SU-2018:0754-1
- E-Mail link for SUSE-SU-2018:0754-1
- SUSE Security Ratings
- SUSE Bug 1069666
- SUSE Bug 1081741
- SUSE Bug 1084191
- SUSE CVE CVE-2018-1050 page
Описание
All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler service to crash.
Затронутые продукты
SUSE Enterprise Storage 5:ctdb-4.6.13+git.72.2a684235f41-3.21.3
SUSE Enterprise Storage 5:samba-ceph-4.6.13+git.72.2a684235f41-3.21.3
SUSE Linux Enterprise Desktop 12 SP3:libdcerpc-binding0-32bit-4.6.13+git.72.2a684235f41-3.21.3
SUSE Linux Enterprise Desktop 12 SP3:libdcerpc-binding0-4.6.13+git.72.2a684235f41-3.21.3
Ссылки
- CVE-2018-1050
- SUSE Bug 1081741