[security-announce] openSUSE-SU-2017:0944-1: important: Security update for samba
openSUSE Security Update: Security update for samba ______________________________________________________________________________ Announcement ID: openSUSE-SU-2017:0944-1 Rating: important References: #1012092 #1019416 #1023847 #1024416 #1027147 #993692 #993707 Cross-References: CVE-2017-2619 Affected Products: openSUSE Leap 42.2 ______________________________________________________________________________ An update that solves one vulnerability and has 6 fixes is now available. Description: This update for samba fixes the following issues: Security issues fixed: - CVE-2017-2619: Symlink race permits opening files outside share directory (bsc#1027147). Bugfixes: - Force usage of ncurses6-config thru NCURSES_CONFIG env var (bsc#1023847). - Add missing ldb module directory (bsc#1012092). - Don't package man pages for VFS modules that aren't built (bsc#993707). - sync_req: make async_connect_send() "reentrant"; (bso#12105); (bsc#1024416). - Document "winbind: ignore domains" parameter; (bsc#1019416). - Prevent core, make sure response->extra_data.data is always cleared out; (bsc#993692). This update was imported from the SUSE:SLE-12-SP2:Update update project. Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE Leap 42.2: zypper in -t patch openSUSE-2017-437=1 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE Leap 42.2 (i586 x86_64): ctdb-4.4.2-11.3.1 ctdb-debuginfo-4.4.2-11.3.1 ctdb-tests-4.4.2-11.3.1 ctdb-tests-debuginfo-4.4.2-11.3.1 libdcerpc-binding0-4.4.2-11.3.1 libdcerpc-binding0-debuginfo-4.4.2-11.3.1 libdcerpc-devel-4.4.2-11.3.1 libdcerpc-samr-devel-4.4.2-11.3.1 libdcerpc-samr0-4.4.2-11.3.1 libdcerpc-samr0-debuginfo-4.4.2-11.3.1 libdcerpc0-4.4.2-11.3.1 libdcerpc0-debuginfo-4.4.2-11.3.1 libndr-devel-4.4.2-11.3.1 libndr-krb5pac-devel-4.4.2-11.3.1 libndr-krb5pac0-4.4.2-11.3.1 libndr-krb5pac0-debuginfo-4.4.2-11.3.1 libndr-nbt-devel-4.4.2-11.3.1 libndr-nbt0-4.4.2-11.3.1 libndr-nbt0-debuginfo-4.4.2-11.3.1 libndr-standard-devel-4.4.2-11.3.1 libndr-standard0-4.4.2-11.3.1 libndr-standard0-debuginfo-4.4.2-11.3.1 libndr0-4.4.2-11.3.1 libndr0-debuginfo-4.4.2-11.3.1 libnetapi-devel-4.4.2-11.3.1 libnetapi0-4.4.2-11.3.1 libnetapi0-debuginfo-4.4.2-11.3.1 libsamba-credentials-devel-4.4.2-11.3.1 libsamba-credentials0-4.4.2-11.3.1 libsamba-credentials0-debuginfo-4.4.2-11.3.1 libsamba-errors-devel-4.4.2-11.3.1 libsamba-errors0-4.4.2-11.3.1 libsamba-errors0-debuginfo-4.4.2-11.3.1 libsamba-hostconfig-devel-4.4.2-11.3.1 libsamba-hostconfig0-4.4.2-11.3.1 libsamba-hostconfig0-debuginfo-4.4.2-11.3.1 libsamba-passdb-devel-4.4.2-11.3.1 libsamba-passdb0-4.4.2-11.3.1 libsamba-passdb0-debuginfo-4.4.2-11.3.1 libsamba-policy-devel-4.4.2-11.3.1 libsamba-policy0-4.4.2-11.3.1 libsamba-policy0-debuginfo-4.4.2-11.3.1 libsamba-util-devel-4.4.2-11.3.1 libsamba-util0-4.4.2-11.3.1 libsamba-util0-debuginfo-4.4.2-11.3.1 libsamdb-devel-4.4.2-11.3.1 libsamdb0-4.4.2-11.3.1 libsamdb0-debuginfo-4.4.2-11.3.1 libsmbclient-devel-4.4.2-11.3.1 libsmbclient0-4.4.2-11.3.1 libsmbclient0-debuginfo-4.4.2-11.3.1 libsmbconf-devel-4.4.2-11.3.1 libsmbconf0-4.4.2-11.3.1 libsmbconf0-debuginfo-4.4.2-11.3.1 libsmbldap-devel-4.4.2-11.3.1 libsmbldap0-4.4.2-11.3.1 libsmbldap0-debuginfo-4.4.2-11.3.1 libtevent-util-devel-4.4.2-11.3.1 libtevent-util0-4.4.2-11.3.1 libtevent-util0-debuginfo-4.4.2-11.3.1 libwbclient-devel-4.4.2-11.3.1 libwbclient0-4.4.2-11.3.1 libwbclient0-debuginfo-4.4.2-11.3.1 samba-4.4.2-11.3.1 samba-client-4.4.2-11.3.1 samba-client-debuginfo-4.4.2-11.3.1 samba-core-devel-4.4.2-11.3.1 samba-debuginfo-4.4.2-11.3.1 samba-debugsource-4.4.2-11.3.1 samba-libs-4.4.2-11.3.1 samba-libs-debuginfo-4.4.2-11.3.1 samba-pidl-4.4.2-11.3.1 samba-python-4.4.2-11.3.1 samba-python-debuginfo-4.4.2-11.3.1 samba-test-4.4.2-11.3.1 samba-test-debuginfo-4.4.2-11.3.1 samba-winbind-4.4.2-11.3.1 samba-winbind-debuginfo-4.4.2-11.3.1 - openSUSE Leap 42.2 (x86_64): libdcerpc-binding0-32bit-4.4.2-11.3.1 libdcerpc-binding0-debuginfo-32bit-4.4.2-11.3.1 libdcerpc-samr0-32bit-4.4.2-11.3.1 libdcerpc-samr0-debuginfo-32bit-4.4.2-11.3.1 libdcerpc0-32bit-4.4.2-11.3.1 libdcerpc0-debuginfo-32bit-4.4.2-11.3.1 libndr-krb5pac0-32bit-4.4.2-11.3.1 libndr-krb5pac0-debuginfo-32bit-4.4.2-11.3.1 libndr-nbt0-32bit-4.4.2-11.3.1 libndr-nbt0-debuginfo-32bit-4.4.2-11.3.1 libndr-standard0-32bit-4.4.2-11.3.1 libndr-standard0-debuginfo-32bit-4.4.2-11.3.1 libndr0-32bit-4.4.2-11.3.1 libndr0-debuginfo-32bit-4.4.2-11.3.1 libnetapi0-32bit-4.4.2-11.3.1 libnetapi0-debuginfo-32bit-4.4.2-11.3.1 libsamba-credentials0-32bit-4.4.2-11.3.1 libsamba-credentials0-debuginfo-32bit-4.4.2-11.3.1 libsamba-errors0-32bit-4.4.2-11.3.1 libsamba-errors0-debuginfo-32bit-4.4.2-11.3.1 libsamba-hostconfig0-32bit-4.4.2-11.3.1 libsamba-hostconfig0-debuginfo-32bit-4.4.2-11.3.1 libsamba-passdb0-32bit-4.4.2-11.3.1 libsamba-passdb0-debuginfo-32bit-4.4.2-11.3.1 libsamba-policy0-32bit-4.4.2-11.3.1 libsamba-policy0-debuginfo-32bit-4.4.2-11.3.1 libsamba-util0-32bit-4.4.2-11.3.1 libsamba-util0-debuginfo-32bit-4.4.2-11.3.1 libsamdb0-32bit-4.4.2-11.3.1 libsamdb0-debuginfo-32bit-4.4.2-11.3.1 libsmbclient0-32bit-4.4.2-11.3.1 libsmbclient0-debuginfo-32bit-4.4.2-11.3.1 libsmbconf0-32bit-4.4.2-11.3.1 libsmbconf0-debuginfo-32bit-4.4.2-11.3.1 libsmbldap0-32bit-4.4.2-11.3.1 libsmbldap0-debuginfo-32bit-4.4.2-11.3.1 libtevent-util0-32bit-4.4.2-11.3.1 libtevent-util0-debuginfo-32bit-4.4.2-11.3.1 libwbclient0-32bit-4.4.2-11.3.1 libwbclient0-debuginfo-32bit-4.4.2-11.3.1 samba-client-32bit-4.4.2-11.3.1 samba-client-debuginfo-32bit-4.4.2-11.3.1 samba-libs-32bit-4.4.2-11.3.1 samba-libs-debuginfo-32bit-4.4.2-11.3.1 samba-winbind-32bit-4.4.2-11.3.1 samba-winbind-debuginfo-32bit-4.4.2-11.3.1 - openSUSE Leap 42.2 (noarch): samba-doc-4.4.2-11.3.1 References: https://www.suse.com/security/cve/CVE-2017-2619.html https://bugzilla.suse.com/1012092 https://bugzilla.suse.com/1019416 https://bugzilla.suse.com/1023847 https://bugzilla.suse.com/1024416 https://bugzilla.suse.com/1027147 https://bugzilla.suse.com/993692 https://bugzilla.suse.com/993707 -- To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security-announce+help@opensuse.org
participants (1)
-
opensuse-security@opensuse.org