Описание
Security update for samba, talloc, tevent
Samba was updated to version 4.6.13 to fix several bugs. (bsc#1084191)
Security issue fixed:
- CVE-2018-1050: DOS vulnerability when SPOOLSS is run externally (bsc#1081741).
The library talloc was updated to version 2.1.10:
- build, documentation and python3 improvements
The library tevent was updated to version 0.9.34 (bsc#1069666);
- Remove unused select backend
- Fix a race condition in tevent_threaded_schedule_immediate(); (bso#13130);
- make tevent_req_print() more robust against crashes
- Fix mutex locking in tevent_threaded_context_destructor().
- Re-init threading in tevent_re_initialise().
- Include the finish location in tevent_req_default_print().
This update was imported from the SUSE:SLE-12-SP3:Update update project.
Список пакетов
openSUSE Leap 42.3
ctdb-4.6.13+git.72.2a684235f41-12.1
ctdb-tests-4.6.13+git.72.2a684235f41-12.1
libdcerpc-binding0-4.6.13+git.72.2a684235f41-12.1
libdcerpc-binding0-32bit-4.6.13+git.72.2a684235f41-12.1
libdcerpc-devel-4.6.13+git.72.2a684235f41-12.1
libdcerpc-samr-devel-4.6.13+git.72.2a684235f41-12.1
libdcerpc-samr0-4.6.13+git.72.2a684235f41-12.1
libdcerpc-samr0-32bit-4.6.13+git.72.2a684235f41-12.1
libdcerpc0-4.6.13+git.72.2a684235f41-12.1
libdcerpc0-32bit-4.6.13+git.72.2a684235f41-12.1
libndr-devel-4.6.13+git.72.2a684235f41-12.1
libndr-krb5pac-devel-4.6.13+git.72.2a684235f41-12.1
libndr-krb5pac0-4.6.13+git.72.2a684235f41-12.1
libndr-krb5pac0-32bit-4.6.13+git.72.2a684235f41-12.1
libndr-nbt-devel-4.6.13+git.72.2a684235f41-12.1
libndr-nbt0-4.6.13+git.72.2a684235f41-12.1
libndr-nbt0-32bit-4.6.13+git.72.2a684235f41-12.1
libndr-standard-devel-4.6.13+git.72.2a684235f41-12.1
libndr-standard0-4.6.13+git.72.2a684235f41-12.1
libndr-standard0-32bit-4.6.13+git.72.2a684235f41-12.1
libndr0-4.6.13+git.72.2a684235f41-12.1
libndr0-32bit-4.6.13+git.72.2a684235f41-12.1
libnetapi-devel-4.6.13+git.72.2a684235f41-12.1
libnetapi0-4.6.13+git.72.2a684235f41-12.1
libnetapi0-32bit-4.6.13+git.72.2a684235f41-12.1
libsamba-credentials-devel-4.6.13+git.72.2a684235f41-12.1
libsamba-credentials0-4.6.13+git.72.2a684235f41-12.1
libsamba-credentials0-32bit-4.6.13+git.72.2a684235f41-12.1
libsamba-errors-devel-4.6.13+git.72.2a684235f41-12.1
libsamba-errors0-4.6.13+git.72.2a684235f41-12.1
libsamba-errors0-32bit-4.6.13+git.72.2a684235f41-12.1
libsamba-hostconfig-devel-4.6.13+git.72.2a684235f41-12.1
libsamba-hostconfig0-4.6.13+git.72.2a684235f41-12.1
libsamba-hostconfig0-32bit-4.6.13+git.72.2a684235f41-12.1
libsamba-passdb-devel-4.6.13+git.72.2a684235f41-12.1
libsamba-passdb0-4.6.13+git.72.2a684235f41-12.1
libsamba-passdb0-32bit-4.6.13+git.72.2a684235f41-12.1
libsamba-policy-devel-4.6.13+git.72.2a684235f41-12.1
libsamba-policy0-4.6.13+git.72.2a684235f41-12.1
libsamba-policy0-32bit-4.6.13+git.72.2a684235f41-12.1
libsamba-util-devel-4.6.13+git.72.2a684235f41-12.1
libsamba-util0-4.6.13+git.72.2a684235f41-12.1
libsamba-util0-32bit-4.6.13+git.72.2a684235f41-12.1
libsamdb-devel-4.6.13+git.72.2a684235f41-12.1
libsamdb0-4.6.13+git.72.2a684235f41-12.1
libsamdb0-32bit-4.6.13+git.72.2a684235f41-12.1
libsmbclient-devel-4.6.13+git.72.2a684235f41-12.1
libsmbclient0-4.6.13+git.72.2a684235f41-12.1
libsmbclient0-32bit-4.6.13+git.72.2a684235f41-12.1
libsmbconf-devel-4.6.13+git.72.2a684235f41-12.1
libsmbconf0-4.6.13+git.72.2a684235f41-12.1
libsmbconf0-32bit-4.6.13+git.72.2a684235f41-12.1
libsmbldap-devel-4.6.13+git.72.2a684235f41-12.1
libsmbldap0-4.6.13+git.72.2a684235f41-12.1
libsmbldap0-32bit-4.6.13+git.72.2a684235f41-12.1
libtalloc-devel-2.1.10-2.3.1
libtalloc2-2.1.10-2.3.1
libtalloc2-32bit-2.1.10-2.3.1
libtevent-devel-0.9.34-2.3.1
libtevent-util-devel-4.6.13+git.72.2a684235f41-12.1
libtevent-util0-4.6.13+git.72.2a684235f41-12.1
libtevent-util0-32bit-4.6.13+git.72.2a684235f41-12.1
libtevent0-0.9.34-2.3.1
libtevent0-32bit-0.9.34-2.3.1
libwbclient-devel-4.6.13+git.72.2a684235f41-12.1
libwbclient0-4.6.13+git.72.2a684235f41-12.1
libwbclient0-32bit-4.6.13+git.72.2a684235f41-12.1
python-talloc-2.1.10-2.3.1
python-talloc-32bit-2.1.10-2.3.1
python-talloc-devel-2.1.10-2.3.1
python-tevent-0.9.34-2.3.1
python-tevent-32bit-0.9.34-2.3.1
python3-talloc-2.1.10-2.3.1
python3-talloc-32bit-2.1.10-2.3.1
python3-talloc-devel-2.1.10-2.3.1
python3-tevent-0.9.34-2.3.1
python3-tevent-32bit-0.9.34-2.3.1
samba-4.6.13+git.72.2a684235f41-12.1
samba-ceph-4.6.13+git.72.2a684235f41-12.1
samba-client-4.6.13+git.72.2a684235f41-12.1
samba-client-32bit-4.6.13+git.72.2a684235f41-12.1
samba-core-devel-4.6.13+git.72.2a684235f41-12.1
samba-doc-4.6.13+git.72.2a684235f41-12.1
samba-libs-4.6.13+git.72.2a684235f41-12.1
samba-libs-32bit-4.6.13+git.72.2a684235f41-12.1
samba-pidl-4.6.13+git.72.2a684235f41-12.1
samba-python-4.6.13+git.72.2a684235f41-12.1
samba-test-4.6.13+git.72.2a684235f41-12.1
samba-winbind-4.6.13+git.72.2a684235f41-12.1
samba-winbind-32bit-4.6.13+git.72.2a684235f41-12.1
talloc-2.1.10-2.3.1
talloc-man-2.1.10-2.3.1
tevent-0.9.34-2.3.1
tevent-man-0.9.34-2.3.1
Ссылки
- E-Mail link for openSUSE-SU-2018:0801-1
- SUSE Security Ratings
Описание
All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler service to crash.
Затронутые продукты
openSUSE Leap 42.3:ctdb-4.6.13+git.72.2a684235f41-12.1
openSUSE Leap 42.3:ctdb-tests-4.6.13+git.72.2a684235f41-12.1
openSUSE Leap 42.3:libdcerpc-binding0-32bit-4.6.13+git.72.2a684235f41-12.1
openSUSE Leap 42.3:libdcerpc-binding0-4.6.13+git.72.2a684235f41-12.1
Ссылки
- CVE-2018-1050
- SUSE Bug 1081741