SUSE-SU-2023:0081-1 -- SLES samba, libsamba-policy0-python3, libsamba-policy-python3-develID: oval:org.secpod.oval:def:89048127 | Date: (C)2023-02-02 (M)2024-05-22 |
Class: PATCH | Family: unix |
This update for samba fixes the following issues: - Updated to version 4.15.13: - CVE-2022-38023: Removed weak cryptographic algorithms from the Netlogon RPC implementation . - CVE-2022-42898: Fixed several buffer overflow vulnerabilities on 32-bit systems . - CVE-2022-3437: Fixed a buffer overflow in Heimdal unwrap_des3 . - CVE-2022-32742: Fixed an information disclosure issue affecting SMB1 servers . - CVE-2022-32746: Fixed a use-after-free occurring in database audit logging . - CVE-2022-2031: Fixed an AD restriction bypass associated with changing passwords . - CVE-2022-32745: Fixed a remote server crash that could be triggered with certain LDAP requests . - CVE-2022-32744: Fixed an issue where AD users could have forged password change requests on behalf of other users . Other fixes: - Fixed a potential crash due to a concurrency issue .
Platform: |
SUSE Linux Enterprise Server 12 SP5 |
Product: |
samba |
libsamba-policy0-python3 |
libsamba-policy-python3-devel |