SUSE-SU-2017:1216-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2017:1216-1

UNKNOWN

Security update for samba

Published May 8, 2017

Modified 8 years ago

Fix available

Details

This update for samba fixes the following issues:

Security issue fixed:

CVE-2017-2619: symlink race permits opening files outside share directory (bsc#1027147). For SUSE Linux Enterprise 11 SP4 this is a re-issue of the update, a regression in the fix has been addressed (bsc#1036283, bso#12721).

Affected Packages(40 packages)

ldapsmb

SUSE Linux Enterprise Point of Sale 11 SP3SUSE Linux Enterprise Server 11 SP3-LTSSSUSE Linux Enterprise Server 11 SP3-TERADATASUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4

Fixed in:

1.34b-90.1

libldb1

SUSE Linux Enterprise Point of Sale 11 SP3SUSE Linux Enterprise Server 11 SP3-LTSSSUSE Linux Enterprise Server 11 SP3-TERADATASUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4

Fixed in:

3.6.3-90.1

libsmbclient0

SUSE Linux Enterprise Point of Sale 11 SP3SUSE Linux Enterprise Server 11 SP3-LTSSSUSE Linux Enterprise Server 11 SP3-TERADATASUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4

Fixed in:

3.6.3-90.1

libtalloc2

SUSE Linux Enterprise Point of Sale 11 SP3SUSE Linux Enterprise Server 11 SP3-LTSSSUSE Linux Enterprise Server 11 SP3-TERADATASUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4

Fixed in:

3.6.3-90.1

libtdb1

SUSE Linux Enterprise Point of Sale 11 SP3SUSE Linux Enterprise Server 11 SP3-LTSSSUSE Linux Enterprise Server 11 SP3-TERADATASUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4

Fixed in:

3.6.3-90.1

libtevent0

SUSE Linux Enterprise Point of Sale 11 SP3SUSE Linux Enterprise Server 11 SP3-LTSSSUSE Linux Enterprise Server 11 SP3-TERADATASUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4

Fixed in:

3.6.3-90.1

libwbclient0

SUSE Linux Enterprise Point of Sale 11 SP3SUSE Linux Enterprise Server 11 SP3-LTSSSUSE Linux Enterprise Server 11 SP3-TERADATASUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4

Fixed in:

3.6.3-90.1

samba

SUSE Linux Enterprise Point of Sale 11 SP3SUSE Linux Enterprise Server 11 SP3-LTSSSUSE Linux Enterprise Server 11 SP3-TERADATASUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4

Fixed in:

3.6.3-90.1

samba-client

SUSE Linux Enterprise Point of Sale 11 SP3SUSE Linux Enterprise Server 11 SP3-LTSSSUSE Linux Enterprise Server 11 SP3-TERADATASUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4

Fixed in:

3.6.3-90.1

samba-doc

SUSE Linux Enterprise Point of Sale 11 SP3SUSE Linux Enterprise Server 11 SP3-LTSSSUSE Linux Enterprise Server 11 SP3-TERADATASUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4

Fixed in:

3.6.3-90.1

References

https://bugzilla.suse.com/1027147

https://bugzilla.suse.com/1036283

https://www.suse.com/security/cve/CVE-2017-2619

https://www.suse.com/support/update/announcement/2017/suse-su-20171216-1/

Upstream

Related

Ecosystems(7)

SUSE Linux Enterprise Point of Sale 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server for SAP Applications 11 SP4

Timeline

PublishedMay 8, 2017

ModifiedMay 8, 2017