Pufferüberlauf in samba
ID: | SUSE-SU-2018:2320-2 |
Distribution: | SUSE |
Plattformen: | SUSE Linux Enterprise Server 12-SP2-BCL |
Datum: | Fr, 19. Oktober 2018, 00:46 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10858 |
Applikationen: | Samba |
Originalnachricht |
|
SUSE Security Update: Security update for samba ______________________________________________________________________________ Announcement ID: SUSE-SU-2018:2320-2 Rating: important References: #1054849 #1103411 Cross-References: CVE-2018-10858 Affected Products: SUSE Linux Enterprise Server 12-SP2-BCL ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for samba fixes the following issues: The following security vulnerability was fixed: - CVE-2018-10858: smbc_urlencode helper function is a subject to buffer overflow (bsc#1103411) The following other bugs were fixed: - Fix libnss_wins.so.2 link libreplace with rpath (bsc#1054849) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-SP2-BCL: zypper in -t patch SUSE-SLE-SERVER-12-SP2-BCL-2018-1557=1 Package List: - SUSE Linux Enterprise Server 12-SP2-BCL (x86_64): libdcerpc-binding0-32bit-4.4.2-38.20.1 libdcerpc-binding0-4.4.2-38.20.1 libdcerpc-binding0-debuginfo-32bit-4.4.2-38.20.1 libdcerpc-binding0-debuginfo-4.4.2-38.20.1 libdcerpc0-32bit-4.4.2-38.20.1 libdcerpc0-4.4.2-38.20.1 libdcerpc0-debuginfo-32bit-4.4.2-38.20.1 libdcerpc0-debuginfo-4.4.2-38.20.1 libndr-krb5pac0-32bit-4.4.2-38.20.1 libndr-krb5pac0-4.4.2-38.20.1 libndr-krb5pac0-debuginfo-32bit-4.4.2-38.20.1 libndr-krb5pac0-debuginfo-4.4.2-38.20.1 libndr-nbt0-32bit-4.4.2-38.20.1 libndr-nbt0-4.4.2-38.20.1 libndr-nbt0-debuginfo-32bit-4.4.2-38.20.1 libndr-nbt0-debuginfo-4.4.2-38.20.1 libndr-standard0-32bit-4.4.2-38.20.1 libndr-standard0-4.4.2-38.20.1 libndr-standard0-debuginfo-32bit-4.4.2-38.20.1 libndr-standard0-debuginfo-4.4.2-38.20.1 libndr0-32bit-4.4.2-38.20.1 libndr0-4.4.2-38.20.1 libndr0-debuginfo-32bit-4.4.2-38.20.1 libndr0-debuginfo-4.4.2-38.20.1 libnetapi0-32bit-4.4.2-38.20.1 libnetapi0-4.4.2-38.20.1 libnetapi0-debuginfo-32bit-4.4.2-38.20.1 libnetapi0-debuginfo-4.4.2-38.20.1 libsamba-credentials0-32bit-4.4.2-38.20.1 libsamba-credentials0-4.4.2-38.20.1 libsamba-credentials0-debuginfo-32bit-4.4.2-38.20.1 libsamba-credentials0-debuginfo-4.4.2-38.20.1 libsamba-errors0-32bit-4.4.2-38.20.1 libsamba-errors0-4.4.2-38.20.1 libsamba-errors0-debuginfo-32bit-4.4.2-38.20.1 libsamba-errors0-debuginfo-4.4.2-38.20.1 libsamba-hostconfig0-32bit-4.4.2-38.20.1 libsamba-hostconfig0-4.4.2-38.20.1 libsamba-hostconfig0-debuginfo-32bit-4.4.2-38.20.1 libsamba-hostconfig0-debuginfo-4.4.2-38.20.1 libsamba-passdb0-32bit-4.4.2-38.20.1 libsamba-passdb0-4.4.2-38.20.1 libsamba-passdb0-debuginfo-32bit-4.4.2-38.20.1 libsamba-passdb0-debuginfo-4.4.2-38.20.1 libsamba-util0-32bit-4.4.2-38.20.1 libsamba-util0-4.4.2-38.20.1 libsamba-util0-debuginfo-32bit-4.4.2-38.20.1 libsamba-util0-debuginfo-4.4.2-38.20.1 libsamdb0-32bit-4.4.2-38.20.1 libsamdb0-4.4.2-38.20.1 libsamdb0-debuginfo-32bit-4.4.2-38.20.1 libsamdb0-debuginfo-4.4.2-38.20.1 libsmbclient0-32bit-4.4.2-38.20.1 libsmbclient0-4.4.2-38.20.1 libsmbclient0-debuginfo-32bit-4.4.2-38.20.1 libsmbclient0-debuginfo-4.4.2-38.20.1 libsmbconf0-32bit-4.4.2-38.20.1 libsmbconf0-4.4.2-38.20.1 libsmbconf0-debuginfo-32bit-4.4.2-38.20.1 libsmbconf0-debuginfo-4.4.2-38.20.1 libsmbldap0-32bit-4.4.2-38.20.1 libsmbldap0-4.4.2-38.20.1 libsmbldap0-debuginfo-32bit-4.4.2-38.20.1 libsmbldap0-debuginfo-4.4.2-38.20.1 libtevent-util0-32bit-4.4.2-38.20.1 libtevent-util0-4.4.2-38.20.1 libtevent-util0-debuginfo-32bit-4.4.2-38.20.1 libtevent-util0-debuginfo-4.4.2-38.20.1 libwbclient0-32bit-4.4.2-38.20.1 libwbclient0-4.4.2-38.20.1 libwbclient0-debuginfo-32bit-4.4.2-38.20.1 libwbclient0-debuginfo-4.4.2-38.20.1 samba-4.4.2-38.20.1 samba-client-32bit-4.4.2-38.20.1 samba-client-4.4.2-38.20.1 samba-client-debuginfo-32bit-4.4.2-38.20.1 samba-client-debuginfo-4.4.2-38.20.1 samba-debuginfo-4.4.2-38.20.1 samba-debugsource-4.4.2-38.20.1 samba-libs-32bit-4.4.2-38.20.1 samba-libs-4.4.2-38.20.1 samba-libs-debuginfo-32bit-4.4.2-38.20.1 samba-libs-debuginfo-4.4.2-38.20.1 samba-winbind-32bit-4.4.2-38.20.1 samba-winbind-4.4.2-38.20.1 samba-winbind-debuginfo-32bit-4.4.2-38.20.1 samba-winbind-debuginfo-4.4.2-38.20.1 - SUSE Linux Enterprise Server 12-SP2-BCL (noarch): samba-doc-4.4.2-38.20.1 References: https://www.suse.com/security/cve/CVE-2018-10858.html https://bugzilla.suse.com/1054849 https://bugzilla.suse.com/1103411 _______________________________________________ sle-security-updates mailing list sle-security-updates@lists.suse.com http://lists.suse.com/mailman/listinfo/sle-security-updates |