24 May
2017
24 May
'17
14:49
Hi folks, We have released Samba updates for all supported Enterprise and openSUSE versions, fixing a remote code execution possibility for authenticated users. The advisory of the Samba team is here: https://www.samba.org/samba/security/CVE-2017-7494.html There is a workaround in the configuration listed, also some impact can be avoided if the writeable share is "noexec" mounted and/or protected using the generated AppArmor share profiles on newer products. SUSE recommends to install these updates as soon as possible. Ciao, Marcus