SUSE Security Update: Security update for Samba
______________________________________________________________________________

Announcement ID:    SUSE-SU-2012:0348-1
Rating:             critical
References:         #550002 #561894 #577868 #592198 #599873 #605935 
                    #611927 #613459 #637218 #652620 #670431 #705241 
                    #708503 #747934 
Cross-References:   CVE-2012-0870
Affected Products:
                    SUSE Linux Enterprise Server 10 SP2
______________________________________________________________________________

   An update that solves one vulnerability and has 13 fixes is
   now available. It includes one version update.

Description:


   This Samba file server update fixes various security issues:

   * CVE-2012-0870: A heap-based buffer overflow that
   could be exploited by remote, unauthenticated attackers to
   crash the smbd daemon or potentially execute arbitrary code
   via specially crafted SMB AndX request packets.
   * CVE-2011-2694: A cross site scripting problem in SWAT
   was fixed.
   * CVE-2011-0719: Fixed a possible denial of service
   caused by memory corruption.
   * CVE-2010-3069: Fix buffer overflow in sid_parse() to
   correctly check the input lengths when reading a binary
   representation of a Windows Security ID (SID).
   * CVE-2010-2063: Addressed possible buffer overrun in
   chain_reply code of pre-3.4 versions.
   * CVE-2010-1642: An uninitialized variable read could
   have caused an smbd crash.
   * CVE-2010-0787: Take extra care that a mount point of
   mount.cifs isn't changed during mount;

   Also the following bugs have been fixed:

   * Add Provides samba-client-gplv2 and samba-doc-gplv2
   to pre-3.2 versions; (bnc#652620).
   * Initialize workgroup of nmblookup as empty string.
   * Fix trusts with Windows 2008R2 DCs; (bnc#613459);
   (bnc#599873); (bnc#592198); (bso#6697).
   * Document "wide links" defaults to "no" in the
   smb.conf man page for versions pre-3.4.6; (bnc#577868).
   * Allow forced pw change even with min pw age;
   (bnc#561894).

   Security Issue reference:

   * CVE-2012-0870
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0870
   >



Package List:

   - SUSE Linux Enterprise Server 10 SP2 (i586 s390x x86_64) [New Version:
 3.0.32]:

      cifs-mount-3.0.32-0.20.1
      libmsrpc-3.0.32-0.20.1
      libmsrpc-devel-3.0.32-0.20.1
      libsmbclient-3.0.32-0.20.1
      libsmbclient-devel-3.0.32-0.20.1
      samba-3.0.32-0.20.1
      samba-client-3.0.32-0.20.1
      samba-krb-printing-3.0.32-0.20.1
      samba-python-3.0.32-0.20.1
      samba-vscan-0.3.6b-42.85.20.1
      samba-winbind-3.0.32-0.20.1

   - SUSE Linux Enterprise Server 10 SP2 (s390x x86_64) [New Version: 3.0.32]:

      libsmbclient-32bit-3.0.32-0.20.1
      samba-32bit-3.0.32-0.20.1
      samba-client-32bit-3.0.32-0.20.1
      samba-winbind-32bit-3.0.32-0.20.1

   - SUSE Linux Enterprise Server 10 SP2 (noarch) [New Version: 3.0.32]:

      samba-doc-3.0.32-0.20.1


References:

   http://support.novell.com/security/cve/CVE-2012-0870.html
   https://bugzilla.novell.com/550002
   https://bugzilla.novell.com/561894
   https://bugzilla.novell.com/577868
   https://bugzilla.novell.com/592198
   https://bugzilla.novell.com/599873
   https://bugzilla.novell.com/605935
   https://bugzilla.novell.com/611927
   https://bugzilla.novell.com/613459
   https://bugzilla.novell.com/637218
   https://bugzilla.novell.com/652620
   https://bugzilla.novell.com/670431
   https://bugzilla.novell.com/705241
   https://bugzilla.novell.com/708503
   https://bugzilla.novell.com/747934
   ?keywords=7647f10c23183441620c089dfae68cd9

-- 
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org
For additional commands, e-mail: opensuse-security-announce+help@opensuse.org