Mailinglist Archive: opensuse-security-announce (81 mails)

< Previous Next >
[security-announce] Heads up: todays Samba update
Hi folks,

We have released Samba updates for all supported Enterprise and openSUSE
versions,
fixing a remote code execution possibility for authenticated users.

The advisory of the Samba team is here:
https://www.samba.org/samba/security/CVE-2017-7494.html

There is a workaround in the configuration listed, also some impact
can be avoided if the writeable share is "noexec" mounted and/or protected
using the generated AppArmor share profiles on newer products.

SUSE recommends to install these updates as soon as possible.

Ciao, Marcus
< Previous Next >
This Thread
  • No further messages