SUSE-SU-2017:2650-1 -- SLES libdcerpc-binding0, libdcerpc0, libndr-krb5pac0, libndr-nbt0, libndr-standard0, libndr0, libnetapi0, libsamba-credentials0, libsamba-errors0, libsamba-hostconfig0, libsamba-passdb0, libsamba-util0, libsamdb0, libsmbclient0, libsmbconf0, libsmbldap0, libtevent-util0, libwbclient0, samba| ID: oval:org.secpod.oval:def:89044484 | Date: (C)2021-06-30 (M)2023-02-20 |
| Class: PATCH | Family: unix |
This update for samba fixes several issues. These security issues were fixed: - CVE-2017-12163: Prevent client short SMB1 write from writing server memory to file, leaking information from the server to the client . - CVE-2017-12150: Always enforce smb signing when it is configured . - CVE-2017-12151: Keep required encryption across SMB3 dfs redirects . These non-security issues were fixed: - Fixed error where short name length was read as 2 bytes, should be 1 - Fixed GUID string format on GetPrinter to prevent published printers from disappearing 7 . - Halt endless forest trust scan to prevent winbind from running out of memory .
| Platform: |
| SUSE Linux Enterprise Server 12 SP2 |
| Product: |
| libdcerpc-binding0 |
| libdcerpc0 |
| libndr-krb5pac0 |
| libndr-nbt0 |
| libndr-standard0 |
| libndr0 |
| libnetapi0 |
| libsamba-credentials0 |
| libsamba-errors0 |
| libsamba-hostconfig0 |
| libsamba-passdb0 |
| libsamba-util0 |
| libsamdb0 |
| libsmbclient0 |
| libsmbconf0 |
| libsmbldap0 |
| libtevent-util0 |
| libwbclient0 |
| samba |
