SUSE: 2015:0386-1 Important Security Fix for Samba (CVE-2015-0240)

suse

February 27, 2015

An update that solves one vulnerability and has 7 fixes is An update that solves one vulnerability and has 7 fixes is An update that solves one vulnerability and has 7 fixes is now...

Summary

Samba has been updated to fix one security issue: * CVE-2015-0240: Don't call talloc_free on an uninitialized pointer (bnc#917376). Additionally, these non-security issues have been fixed: * Realign the winbind request structure following require_membership_of field expansion (bnc#913001). * Reuse connections derived from DFS referrals (bso#10123, fate#316512). * Set domain/workgroup based on authentication callback value (bso#11059). * Fix spoolss error response marshalling (bso#10984). * Fix spoolss EnumJobs and GetJob responses (bso#10905, bnc#898031). * Fix handling of bad EnumJobs levels (bso#10898). * Fix small memory-leak in the background print process (bnc#899558). * Prune idle or hung connections older than "winbind request timeout" (bso#3204, bnc#872912).

Topics Covered

security advisory critical issue security fix SUSE Linux Samba important update patch instructions

References

#872912 #882356 #883870 #886193 #898031 #899558

#913001 #917376

Cross- CVE-2015-0240

Affected Products:

SUSE Linux Enterprise Server 11 SP2 LTSS

https://www.suse.com/security/cve/CVE-2015-0240.html

https://bugzilla.suse.com/show_bug.cgi?id=872912

https://bugzilla.suse.com/show_bug.cgi?id=882356

https://bugzilla.suse.com/show_bug.cgi?id=883870

https://bugzilla.suse.com/show_bug.cgi?id=886193

https://bugzilla.suse.com/show_bug.cgi?id=898031

https://bugzilla.suse.com/show_bug.cgi?id=899558

https://bugzilla.suse.com/show_bug.cgi?id=913001

https://bugzilla.suse.com/show_bug.cgi?id=917376

https://scc.suse.com:443/patches/

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2015:0386-1

Rating: important

Topics Covered

security advisory critical issue security fix SUSE Linux Samba important update patch instructions

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2015:0386-1 Important Security Fix for Samba (CVE-2015-0240)

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2015:0386-1 Important Security Fix for Samba (CVE-2015-0240)

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!