Описание
Security update for samba
This update for samba fixes the following issues:
- CVE-2018-1050: DOS vulnerability when SPOOLSS is run externally (bsc#1081741)
Список пакетов
SUSE Linux Enterprise Server 11 SP4
ldapsmb-1.34b-94.11.1
libldb1-3.6.3-94.11.1
libsmbclient0-3.6.3-94.11.1
libsmbclient0-32bit-3.6.3-94.11.1
libsmbclient0-x86-3.6.3-94.11.1
libtalloc2-3.6.3-94.11.1
libtalloc2-32bit-3.6.3-94.11.1
libtalloc2-x86-3.6.3-94.11.1
libtdb1-3.6.3-94.11.1
libtdb1-32bit-3.6.3-94.11.1
libtdb1-x86-3.6.3-94.11.1
libtevent0-3.6.3-94.11.1
libtevent0-32bit-3.6.3-94.11.1
libtevent0-x86-3.6.3-94.11.1
libwbclient0-3.6.3-94.11.1
libwbclient0-32bit-3.6.3-94.11.1
libwbclient0-x86-3.6.3-94.11.1
samba-3.6.3-94.11.1
samba-32bit-3.6.3-94.11.1
samba-client-3.6.3-94.11.1
samba-client-32bit-3.6.3-94.11.1
samba-client-x86-3.6.3-94.11.1
samba-doc-3.6.3-94.11.1
samba-krb-printing-3.6.3-94.11.1
samba-winbind-3.6.3-94.11.1
samba-winbind-32bit-3.6.3-94.11.1
samba-winbind-x86-3.6.3-94.11.1
samba-x86-3.6.3-94.11.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
ldapsmb-1.34b-94.11.1
libldb1-3.6.3-94.11.1
libsmbclient0-3.6.3-94.11.1
libsmbclient0-32bit-3.6.3-94.11.1
libsmbclient0-x86-3.6.3-94.11.1
libtalloc2-3.6.3-94.11.1
libtalloc2-32bit-3.6.3-94.11.1
libtalloc2-x86-3.6.3-94.11.1
libtdb1-3.6.3-94.11.1
libtdb1-32bit-3.6.3-94.11.1
libtdb1-x86-3.6.3-94.11.1
libtevent0-3.6.3-94.11.1
libtevent0-32bit-3.6.3-94.11.1
libtevent0-x86-3.6.3-94.11.1
libwbclient0-3.6.3-94.11.1
libwbclient0-32bit-3.6.3-94.11.1
libwbclient0-x86-3.6.3-94.11.1
samba-3.6.3-94.11.1
samba-32bit-3.6.3-94.11.1
samba-client-3.6.3-94.11.1
samba-client-32bit-3.6.3-94.11.1
samba-client-x86-3.6.3-94.11.1
samba-doc-3.6.3-94.11.1
samba-krb-printing-3.6.3-94.11.1
samba-winbind-3.6.3-94.11.1
samba-winbind-32bit-3.6.3-94.11.1
samba-winbind-x86-3.6.3-94.11.1
samba-x86-3.6.3-94.11.1
SUSE Linux Enterprise Software Development Kit 11 SP4
libldb-devel-3.6.3-94.11.1
libnetapi-devel-3.6.3-94.11.1
libnetapi0-3.6.3-94.11.1
libsmbclient-devel-3.6.3-94.11.1
libsmbsharemodes-devel-3.6.3-94.11.1
libsmbsharemodes0-3.6.3-94.11.1
libtalloc-devel-3.6.3-94.11.1
libtdb-devel-3.6.3-94.11.1
libtevent-devel-3.6.3-94.11.1
libwbclient-devel-3.6.3-94.11.1
samba-devel-3.6.3-94.11.1
samba-test-3.6.3-94.11.1
Ссылки
- Link for SUSE-SU-2018:0774-1
- E-Mail link for SUSE-SU-2018:0774-1
- SUSE Security Ratings
- SUSE Bug 1081741
- SUSE CVE CVE-2018-1050 page
Описание
All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler service to crash.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:ldapsmb-1.34b-94.11.1
SUSE Linux Enterprise Server 11 SP4:libldb1-3.6.3-94.11.1
SUSE Linux Enterprise Server 11 SP4:libsmbclient0-3.6.3-94.11.1
SUSE Linux Enterprise Server 11 SP4:libsmbclient0-32bit-3.6.3-94.11.1
Ссылки
- CVE-2018-1050
- SUSE Bug 1081741