SUSE-SU-2017:3155-1 -- SLES samba, libdcerpc-binding0, libdcerpc0, libndr-krb5pac0, libndr-nbt0, libndr-standard0, libndr0, libnetapi0, libsamba-credentials0, libsamba-errors0, libsamba-hostconfig0, libsamba-passdb0, libsamba-util0, libsamdb0, libsmbclient0, libsmbconf0, libsmbldap0, libtevent-util0, libwbclient0ID: oval:org.secpod.oval:def:89044558 | Date: (C)2021-06-30 (M)2023-02-20 |
Class: PATCH | Family: unix |
This update for samba fixes the following issues: Security issues fixed: - CVE-2017-14746: Use-after-free vulnerability . - CVE-2017-15275: Server heap memory information leak . - CVE-2017-12163: Prevent client short SMB1 write from writing server memory to file . - CVE-2017-12151: Keep required encryption across SMB3 dfs redirects . - CVE-2017-12150: Some code path don"t enforce smb signing when they should . Bug fixes: - Samba was updated to 4.6.9 see release notes for details. * https://www.samba.org/samba/history/samba-4.6.9.html
Platform: |
SUSE Linux Enterprise Server 12 SP3 |
Product: |
samba |
libdcerpc-binding0 |
libdcerpc0 |
libndr-krb5pac0 |
libndr-nbt0 |
libndr-standard0 |
libndr0 |
libnetapi0 |
libsamba-credentials0 |
libsamba-errors0 |
libsamba-hostconfig0 |
libsamba-passdb0 |
libsamba-util0 |
libsamdb0 |
libsmbclient0 |
libsmbconf0 |
libsmbldap0 |
libtevent-util0 |
libwbclient0 |