SUSE-SU-2023:4046-1 -- SLES samba, libsamba-policy0-python3, libsamba-policy-devel, libsamba-policy-python3-develID: oval:org.secpod.oval:def:89050943 | Date: (C)2023-11-17 (M)2024-04-29 |
Class: PATCH | Family: unix |
This update for samba fixes the following issues: * CVE-2023-4091: Fixed a bug where a client can truncate file with read-only permissions. * CVE-2023-42669: Fixed a bug in "rpcecho" development server which allows Denial of Service via sleep call on AD DC. * CVE-2023-42670: Fixed the procedure number which was out of range when starting Active Directory Users and Computers. * CVE-2023-3961: Fixed an unsanitized client pipe name passed to local_np_connect. * CVE-2023-4154: Fixed a bug in dirsync which allows SYSTEM access with only "GUID_DRS_GET_CHANGES" right
Platform: |
SUSE Linux Enterprise Desktop 15 SP5 |
SUSE Linux Enterprise Server 15 SP5 |
Product: |
samba |
libsamba-policy0-python3 |
libsamba-policy-devel |
libsamba-policy-python3-devel |