SUSE-SU-2023:1687-1 -- SLES ldb, samba, libsamba-policy0-python3, libsamba-policy-devel, python3-ldb, libsamba-policy-python3-devel, libldb-devel, libldb2ID: oval:org.secpod.oval:def:89048518 | Date: (C)2023-04-11 (M)2024-04-29 |
Class: PATCH | Family: unix |
This update for ldb, samba fixes the following issues: ldb: * CVE-2022-32746: Fixed an use-after-free issue in the database audit logging module . * CVE-2023-0614: Fixed discovering of access controlled AD LDAP attributes . samba: * CVE-2023-0922: Fixed cleartext password sending by AD DC admin tool . * CVE-2023-0225: Fixed deletion of AD DC "dnsHostname" attribute by unprivileged authenticated users . * CVE-2023-0614: Fixed discovering of access controlled AD LDAP attributes . The following non-security bug was fixed: * Prevent use after free of messaging_ctdb_fde_ev structs .
Platform: |
SUSE Linux Enterprise Server 15 SP3 |
Product: |
ldb |
samba |
libsamba-policy0-python3 |
libsamba-policy-devel |
python3-ldb |
libsamba-policy-python3-devel |
libldb-devel |
libldb2 |