SUSE-SU-2023:1689-1 -- SLES ldb, samba, python3-ldb, libldb2, libsamba-policy-python3-devel, libldb-devel, libsamba-policy0-python3, libsamba-policy-devel| ID: oval:org.secpod.oval:def:89048661 | Date: (C)2023-04-11 (M)2024-04-29 |
| Class: PATCH | Family: unix |
This update for ldb, samba fixes the following issues: ldb: * CVE-2022-32746: Fixed an use-after-free issue in the database audit logging module . * CVE-2023-0614: Fixed discovering of access controlled AD LDAP attributes . samba: * CVE-2023-0922: Fixed cleartext password sending by AD DC admin tool . * CVE-2023-0225: Fixed deletion of AD DC "dnsHostname" attribute by unprivileged authenticated users . * CVE-2023-0614: Fixed discovering of access controlled AD LDAP attributes . The following non-security bug were fixed: * Prevent use after free of messaging_ctdb_fde_ev structs . * Ship missing samba-winbind-libs-32bit package * Ship missing samba-libs to SLE Micro 5.3
| Platform: |
| SUSE Linux Enterprise Desktop 15 SP4 |
| SUSE Linux Enterprise Server 15 SP4 |
| Product: |
| ldb |
| samba |
| python3-ldb |
| libldb2 |
| libsamba-policy-python3-devel |
| libldb-devel |
| libsamba-policy0-python3 |
| libsamba-policy-devel |
