[security-announce] openSUSE-SU-2013:1349-1: important: update for samba

16 Aug 2013

      openSUSE Security Update: update for samba
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2013:1349-1
Rating:             important
References:         #765270 #798856 #804822 #806501 #812929 #816647 
                    #817919 #820531 #821889 #823549 #824833 #829969 

Cross-References:   CVE-2013-4124
Affected Products:
                    openSUSE 12.3
______________________________________________________________________________

   An update that solves one vulnerability and has 11 fixes is
   now available.

Description:

   This update of samba fixed the following issues:

   - The pam_winbind require_membership_of option allows for a
   list of SID, but currently only provides buffer space for
   ~20; (bnc#806501).

   - Samba 3.0.x to 4.0.7 are affected by a denial of service
   attack on authenticated or guest connections;
   CVE-2013-4124; (bnc#829969).

   - PIDL: fix parsing linemarkers in preprocessor output;
   (bso#9636).
   - build:autoconf: fix output of syslog-facility check;
   (bso#9983).
   - libreplace: add a missing "eval" to the
   AC_VERIFY_C_PROTOTYPE macro.

   - Remove ldapsmb from the main spec file.

   - Don't bzip2 the main tar ball, use the upstream gziped
   one instead.

   - Fix crash bug during Win8 sync; (bso#9822).
   - Check for system libtevent and link dbwrap_tool and
   dbwrap_torture against it; (bso#9881).
   - errno gets overwritten in call to check_parent_exists();
   (bso#9927).
   - Fix a bug of drvupgrade of smbcontrol; (bso#9941).

   - Document idmap_ad rfc2307 attribute requirements;
   (bso#9880); (bnc#820531).

   - Don't package the SWAT man page while its build is
   disabled; (bnc#816647).

   - Don't install the tdb utilities man pages on post-12.1
   systems; (bnc#823549).

   - Fix libreplace license ambiguity; (bso#8997);
   (bnc#765270).

   - s3-docs: Remove "experimental" label on "max
   protocol=SMB2" parameter; (bso#9688).
   - Remove the compound_related_in_progress state from the
   smb2 global state; (bso#9722).
   - Makefile: Don't know how to make LIBNDR_PREG_OBJ;
   (bso#9868).

   - Fix is_printer_published GUID retrieval; (bso#9900);
   (bnc#798856).

   - Fix 'map untrusted to domain' with NTLMv2; (bso#9817);
   (bnc#817919).
   - Don't modify the pidfile name when a custom config file
   path is used; (bnc#812929).

   - Add extra attributes for AD printer publishing;
   (bso#9378); (bnc#798856).
   - Fix vfs_catia module; (bso#9701); (bnc#824833). systems;
   (bnc#804822); (bnc#821889).

   - Fix AD printer publishing; (bso#9378); (bnc#798856).

Patch Instructions:

   To install this openSUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - openSUSE 12.3:

      zypper in -t patch openSUSE-2013-651

   To bring your system up-to-date, use "zypper patch".

Package List:

   - openSUSE 12.3 (i586 x86_64):

      libnetapi-devel-3.6.12-59.9.1
      libnetapi0-3.6.12-59.9.1
      libnetapi0-debuginfo-3.6.12-59.9.1
      libsmbclient-devel-3.6.12-59.9.1
      libsmbclient0-3.6.12-59.9.1
      libsmbclient0-debuginfo-3.6.12-59.9.1
      libsmbsharemodes-devel-3.6.12-59.9.1
      libsmbsharemodes0-3.6.12-59.9.1
      libsmbsharemodes0-debuginfo-3.6.12-59.9.1
      libwbclient-devel-3.6.12-59.9.1
      libwbclient0-3.6.12-59.9.1
      libwbclient0-debuginfo-3.6.12-59.9.1
      samba-3.6.12-59.9.1
      samba-client-3.6.12-59.9.1
      samba-client-debuginfo-3.6.12-59.9.1
      samba-debuginfo-3.6.12-59.9.1
      samba-debugsource-3.6.12-59.9.1
      samba-devel-3.6.12-59.9.1
      samba-krb-printing-3.6.12-59.9.1
      samba-krb-printing-debuginfo-3.6.12-59.9.1
      samba-winbind-3.6.12-59.9.1
      samba-winbind-debuginfo-3.6.12-59.9.1

   - openSUSE 12.3 (x86_64):

      libsmbclient0-32bit-3.6.12-59.9.1
      libsmbclient0-debuginfo-32bit-3.6.12-59.9.1
      libwbclient0-32bit-3.6.12-59.9.1
      libwbclient0-debuginfo-32bit-3.6.12-59.9.1
      samba-32bit-3.6.12-59.9.1
      samba-client-32bit-3.6.12-59.9.1
      samba-client-debuginfo-32bit-3.6.12-59.9.1
      samba-debuginfo-32bit-3.6.12-59.9.1
      samba-winbind-32bit-3.6.12-59.9.1
      samba-winbind-debuginfo-32bit-3.6.12-59.9.1

   - openSUSE 12.3 (noarch):

      samba-doc-3.6.12-59.9.1

References:

   http://support.novell.com/security/cve/CVE-2013-4124.html
   https://bugzilla.novell.com/765270
   https://bugzilla.novell.com/798856
   https://bugzilla.novell.com/804822
   https://bugzilla.novell.com/806501
   https://bugzilla.novell.com/812929
   https://bugzilla.novell.com/816647
   https://bugzilla.novell.com/817919
   https://bugzilla.novell.com/820531
   https://bugzilla.novell.com/821889
   https://bugzilla.novell.com/823549
   https://bugzilla.novell.com/824833
   https://bugzilla.novell.com/829969

-- 
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org
For additional commands, e-mail: opensuse-security-announce+help@opensuse.org

[security-announce] openSUSE-SU-2013:1349-1: important: update for samba

opensuse-security＠opensuse.org