SUSE-SU-2016:2570-1: moderate: Security update for samba

sle-security-updates at lists.suse.com sle-security-updates at lists.suse.com
Wed Oct 19 14:08:54 MDT 2016


   SUSE Security Update: Security update for samba
______________________________________________________________________________

Announcement ID:    SUSE-SU-2016:2570-1
Rating:             moderate
References:         #1005065 #969522 #975131 #981566 #986228 
                    #986869 #991564 
Cross-References:   CVE-2016-2119
Affected Products:
                    SUSE Linux Enterprise Server 12-LTSS
______________________________________________________________________________

   An update that solves one vulnerability and has 6 fixes is
   now available.

Description:

   This update for samba provides the following fix:

   Following security issue was fixed:
   - CVE-2016-2119: Prevent client-side SMB2 signing downgrade. (bsc#986869)

   Also the following bugs were fixed:
   - Fix possible ctdb crash when opening sockets with htons(IPPROTO_RAW).
     (bsc#969522)
   - Honor smb.conf socket options in winbind. (bsc#975131)
   - Fix ntlm-auth segmentation fault with squid. (bsc#986228)
   - Implement new "--no-dns-updates" option in "net ads" command.
     (bsc#991564)
   - Fix population of ctdb sysconfig after source merge. (bsc#981566)


Patch Instructions:

   To install this SUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Server 12-LTSS:

      zypper in -t patch SUSE-SLE-SERVER-12-2016-1506=1

   To bring your system up-to-date, use "zypper patch".


Package List:

   - SUSE Linux Enterprise Server 12-LTSS (ppc64le s390x x86_64):

      ctdb-4.2.4-18.27.9
      ctdb-debuginfo-4.2.4-18.27.9
      libdcerpc-binding0-4.2.4-18.27.9
      libdcerpc-binding0-debuginfo-4.2.4-18.27.9
      libdcerpc0-4.2.4-18.27.9
      libdcerpc0-debuginfo-4.2.4-18.27.9
      libgensec0-4.2.4-18.27.9
      libgensec0-debuginfo-4.2.4-18.27.9
      libndr-krb5pac0-4.2.4-18.27.9
      libndr-krb5pac0-debuginfo-4.2.4-18.27.9
      libndr-nbt0-4.2.4-18.27.9
      libndr-nbt0-debuginfo-4.2.4-18.27.9
      libndr-standard0-4.2.4-18.27.9
      libndr-standard0-debuginfo-4.2.4-18.27.9
      libndr0-4.2.4-18.27.9
      libndr0-debuginfo-4.2.4-18.27.9
      libnetapi0-4.2.4-18.27.9
      libnetapi0-debuginfo-4.2.4-18.27.9
      libregistry0-4.2.4-18.27.9
      libregistry0-debuginfo-4.2.4-18.27.9
      libsamba-credentials0-4.2.4-18.27.9
      libsamba-credentials0-debuginfo-4.2.4-18.27.9
      libsamba-hostconfig0-4.2.4-18.27.9
      libsamba-hostconfig0-debuginfo-4.2.4-18.27.9
      libsamba-passdb0-4.2.4-18.27.9
      libsamba-passdb0-debuginfo-4.2.4-18.27.9
      libsamba-util0-4.2.4-18.27.9
      libsamba-util0-debuginfo-4.2.4-18.27.9
      libsamdb0-4.2.4-18.27.9
      libsamdb0-debuginfo-4.2.4-18.27.9
      libsmbclient-raw0-4.2.4-18.27.9
      libsmbclient-raw0-debuginfo-4.2.4-18.27.9
      libsmbclient0-4.2.4-18.27.9
      libsmbclient0-debuginfo-4.2.4-18.27.9
      libsmbconf0-4.2.4-18.27.9
      libsmbconf0-debuginfo-4.2.4-18.27.9
      libsmbldap0-4.2.4-18.27.9
      libsmbldap0-debuginfo-4.2.4-18.27.9
      libtevent-util0-4.2.4-18.27.9
      libtevent-util0-debuginfo-4.2.4-18.27.9
      libwbclient0-4.2.4-18.27.9
      libwbclient0-debuginfo-4.2.4-18.27.9
      samba-4.2.4-18.27.9
      samba-client-4.2.4-18.27.9
      samba-client-debuginfo-4.2.4-18.27.9
      samba-debuginfo-4.2.4-18.27.9
      samba-debugsource-4.2.4-18.27.9
      samba-libs-4.2.4-18.27.9
      samba-libs-debuginfo-4.2.4-18.27.9
      samba-winbind-4.2.4-18.27.9
      samba-winbind-debuginfo-4.2.4-18.27.9

   - SUSE Linux Enterprise Server 12-LTSS (s390x x86_64):

      libdcerpc-binding0-32bit-4.2.4-18.27.9
      libdcerpc-binding0-debuginfo-32bit-4.2.4-18.27.9
      libdcerpc0-32bit-4.2.4-18.27.9
      libdcerpc0-debuginfo-32bit-4.2.4-18.27.9
      libgensec0-32bit-4.2.4-18.27.9
      libgensec0-debuginfo-32bit-4.2.4-18.27.9
      libndr-krb5pac0-32bit-4.2.4-18.27.9
      libndr-krb5pac0-debuginfo-32bit-4.2.4-18.27.9
      libndr-nbt0-32bit-4.2.4-18.27.9
      libndr-nbt0-debuginfo-32bit-4.2.4-18.27.9
      libndr-standard0-32bit-4.2.4-18.27.9
      libndr-standard0-debuginfo-32bit-4.2.4-18.27.9
      libndr0-32bit-4.2.4-18.27.9
      libndr0-debuginfo-32bit-4.2.4-18.27.9
      libnetapi0-32bit-4.2.4-18.27.9
      libnetapi0-debuginfo-32bit-4.2.4-18.27.9
      libsamba-credentials0-32bit-4.2.4-18.27.9
      libsamba-credentials0-debuginfo-32bit-4.2.4-18.27.9
      libsamba-hostconfig0-32bit-4.2.4-18.27.9
      libsamba-hostconfig0-debuginfo-32bit-4.2.4-18.27.9
      libsamba-passdb0-32bit-4.2.4-18.27.9
      libsamba-passdb0-debuginfo-32bit-4.2.4-18.27.9
      libsamba-util0-32bit-4.2.4-18.27.9
      libsamba-util0-debuginfo-32bit-4.2.4-18.27.9
      libsamdb0-32bit-4.2.4-18.27.9
      libsamdb0-debuginfo-32bit-4.2.4-18.27.9
      libsmbclient-raw0-32bit-4.2.4-18.27.9
      libsmbclient-raw0-debuginfo-32bit-4.2.4-18.27.9
      libsmbclient0-32bit-4.2.4-18.27.9
      libsmbclient0-debuginfo-32bit-4.2.4-18.27.9
      libsmbconf0-32bit-4.2.4-18.27.9
      libsmbconf0-debuginfo-32bit-4.2.4-18.27.9
      libsmbldap0-32bit-4.2.4-18.27.9
      libsmbldap0-debuginfo-32bit-4.2.4-18.27.9
      libtevent-util0-32bit-4.2.4-18.27.9
      libtevent-util0-debuginfo-32bit-4.2.4-18.27.9
      libwbclient0-32bit-4.2.4-18.27.9
      libwbclient0-debuginfo-32bit-4.2.4-18.27.9
      samba-32bit-4.2.4-18.27.9
      samba-client-32bit-4.2.4-18.27.9
      samba-client-debuginfo-32bit-4.2.4-18.27.9
      samba-debuginfo-32bit-4.2.4-18.27.9
      samba-libs-32bit-4.2.4-18.27.9
      samba-libs-debuginfo-32bit-4.2.4-18.27.9
      samba-winbind-32bit-4.2.4-18.27.9
      samba-winbind-debuginfo-32bit-4.2.4-18.27.9

   - SUSE Linux Enterprise Server 12-LTSS (noarch):

      samba-doc-4.2.4-18.27.9


References:

   https://www.suse.com/security/cve/CVE-2016-2119.html
   https://bugzilla.suse.com/1005065
   https://bugzilla.suse.com/969522
   https://bugzilla.suse.com/975131
   https://bugzilla.suse.com/981566
   https://bugzilla.suse.com/986228
   https://bugzilla.suse.com/986869
   https://bugzilla.suse.com/991564



More information about the sle-security-updates mailing list