Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 554
Alerts This Week
Warning Icon 1 554

SUSE: 2017:0862-1 Critical: Samba Symlink Race Vulnerability Alert

suse
Calendar Grey March 29, 2017
Scroller Suse Esm H88
SUSE Linux has released a crucial security patch for samba, tackling a severe symlink race issue with significant improvements.
An update that solves one vulnerability and has four fixes An update that solves one vulnerability and has four fixes An update that solves one vulnerability and has four fixes is ...

Summary

This update for samba fixes the following issues: Security issues fixed: - CVE-2017-2619: Symlink race permits opening files outside share directory (bsc#1027147). Bugfixes: - Don't package man pages for VFS modules that aren't built (bsc#993707). - sync_req: make async_connect_send() "reentrant"; (bso#12105); (bsc#1024416). - Document "winbind: ignore domains" parameter; (bsc#1019416). - Prevent core, make sure response->extra_data.data is always cleared out; (bsc#993692). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12: zypper in -t patch SUSE-SLE-SAP-12-2017-481=1 - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-481=1

References

#1019416 #1024416 #1027147 #993692 #993707

Cross- CVE-2017-2619

Affected Products:

SUSE Linux Enterprise Server for SAP 12

SUSE Linux Enterprise Server 12-LTSS

SUSE Linux Enterprise High Availability 12

https://www.suse.com/security/cve/CVE-2017-2619.html

https://bugzilla.suse.com/1019416

https://bugzilla.suse.com/1024416

https://bugzilla.suse.com/1027147

https://bugzilla.suse.com/993692

https://bugzilla.suse.com/993707

Severity
critical
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2017:0862-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.