[security-announce] openSUSE-SU-2013:1349-1: important: update for samba
openSUSE Security Update: update for samba ______________________________________________________________________________ Announcement ID: openSUSE-SU-2013:1349-1 Rating: important References: #765270 #798856 #804822 #806501 #812929 #816647 #817919 #820531 #821889 #823549 #824833 #829969 Cross-References: CVE-2013-4124 Affected Products: openSUSE 12.3 ______________________________________________________________________________ An update that solves one vulnerability and has 11 fixes is now available. Description: This update of samba fixed the following issues: - The pam_winbind require_membership_of option allows for a list of SID, but currently only provides buffer space for ~20; (bnc#806501). - Samba 3.0.x to 4.0.7 are affected by a denial of service attack on authenticated or guest connections; CVE-2013-4124; (bnc#829969). - PIDL: fix parsing linemarkers in preprocessor output; (bso#9636). - build:autoconf: fix output of syslog-facility check; (bso#9983). - libreplace: add a missing "eval" to the AC_VERIFY_C_PROTOTYPE macro. - Remove ldapsmb from the main spec file. - Don't bzip2 the main tar ball, use the upstream gziped one instead. - Fix crash bug during Win8 sync; (bso#9822). - Check for system libtevent and link dbwrap_tool and dbwrap_torture against it; (bso#9881). - errno gets overwritten in call to check_parent_exists(); (bso#9927). - Fix a bug of drvupgrade of smbcontrol; (bso#9941). - Document idmap_ad rfc2307 attribute requirements; (bso#9880); (bnc#820531). - Don't package the SWAT man page while its build is disabled; (bnc#816647). - Don't install the tdb utilities man pages on post-12.1 systems; (bnc#823549). - Fix libreplace license ambiguity; (bso#8997); (bnc#765270). - s3-docs: Remove "experimental" label on "max protocol=SMB2" parameter; (bso#9688). - Remove the compound_related_in_progress state from the smb2 global state; (bso#9722). - Makefile: Don't know how to make LIBNDR_PREG_OBJ; (bso#9868). - Fix is_printer_published GUID retrieval; (bso#9900); (bnc#798856). - Fix 'map untrusted to domain' with NTLMv2; (bso#9817); (bnc#817919). - Don't modify the pidfile name when a custom config file path is used; (bnc#812929). - Add extra attributes for AD printer publishing; (bso#9378); (bnc#798856). - Fix vfs_catia module; (bso#9701); (bnc#824833). systems; (bnc#804822); (bnc#821889). - Fix AD printer publishing; (bso#9378); (bnc#798856). Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 12.3: zypper in -t patch openSUSE-2013-651 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 12.3 (i586 x86_64): libnetapi-devel-3.6.12-59.9.1 libnetapi0-3.6.12-59.9.1 libnetapi0-debuginfo-3.6.12-59.9.1 libsmbclient-devel-3.6.12-59.9.1 libsmbclient0-3.6.12-59.9.1 libsmbclient0-debuginfo-3.6.12-59.9.1 libsmbsharemodes-devel-3.6.12-59.9.1 libsmbsharemodes0-3.6.12-59.9.1 libsmbsharemodes0-debuginfo-3.6.12-59.9.1 libwbclient-devel-3.6.12-59.9.1 libwbclient0-3.6.12-59.9.1 libwbclient0-debuginfo-3.6.12-59.9.1 samba-3.6.12-59.9.1 samba-client-3.6.12-59.9.1 samba-client-debuginfo-3.6.12-59.9.1 samba-debuginfo-3.6.12-59.9.1 samba-debugsource-3.6.12-59.9.1 samba-devel-3.6.12-59.9.1 samba-krb-printing-3.6.12-59.9.1 samba-krb-printing-debuginfo-3.6.12-59.9.1 samba-winbind-3.6.12-59.9.1 samba-winbind-debuginfo-3.6.12-59.9.1 - openSUSE 12.3 (x86_64): libsmbclient0-32bit-3.6.12-59.9.1 libsmbclient0-debuginfo-32bit-3.6.12-59.9.1 libwbclient0-32bit-3.6.12-59.9.1 libwbclient0-debuginfo-32bit-3.6.12-59.9.1 samba-32bit-3.6.12-59.9.1 samba-client-32bit-3.6.12-59.9.1 samba-client-debuginfo-32bit-3.6.12-59.9.1 samba-debuginfo-32bit-3.6.12-59.9.1 samba-winbind-32bit-3.6.12-59.9.1 samba-winbind-debuginfo-32bit-3.6.12-59.9.1 - openSUSE 12.3 (noarch): samba-doc-3.6.12-59.9.1 References: http://support.novell.com/security/cve/CVE-2013-4124.html https://bugzilla.novell.com/765270 https://bugzilla.novell.com/798856 https://bugzilla.novell.com/804822 https://bugzilla.novell.com/806501 https://bugzilla.novell.com/812929 https://bugzilla.novell.com/816647 https://bugzilla.novell.com/817919 https://bugzilla.novell.com/820531 https://bugzilla.novell.com/821889 https://bugzilla.novell.com/823549 https://bugzilla.novell.com/824833 https://bugzilla.novell.com/829969 -- To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security-announce+help@opensuse.org
participants (1)
-
opensuse-security@opensuse.org