Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 454
Alerts This Week
Warning Icon 1 454

SUSE 12-SP3: 2017:2237-1 Important Samba Update: Critical Issue

suse
Calendar Grey August 22, 2017
Dist Suse Esm H88
CentOS Security Patch provides resolutions for OpenSSH and monitoring tools tackling an urgent vulnerability. Maintain your safety!
An update that solves one vulnerability and has 6 fixes is An update that solves one vulnerability and has 6 fixes is An update that solves one vulnerability and has 6 fixes is now...

Summary

This update provides Samba 4.6.7, which fixes the following issues: - CVE-2017-11103: Metadata were being taken from the unauthenticated plaintext (the Ticket) rather than the authenticated and encrypted KDC response. (bsc#1048278) - Fix cephwrap_chdir(). (bsc#1048790) - Fix ctdb logs to /var/log/log.ctdb instead of /var/log/ctdb. (bsc#1048339) - Fix inconsistent ctdb socket path. (bsc#1048352) - Fix non-admin cephx authentication. (bsc#1048387) - CTDB cannot start when there is no persistent database. (bsc#1052577) The CTDB resource agent was also fixed to not fail when the database is empty. Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3:

References

#1048278 #1048339 #1048352 #1048387 #1048790

#1052577 #1054017

Cross- CVE-2017-11103

Affected Products:

SUSE Linux Enterprise Software Development Kit 12-SP3

SUSE Linux Enterprise Server 12-SP3

SUSE Linux Enterprise High Availability 12-SP3

SUSE Linux Enterprise Desktop 12-SP3

https://www.suse.com/security/cve/CVE-2017-11103.html

https://bugzilla.suse.com/1048278

https://bugzilla.suse.com/1048339

https://bugzilla.suse.com/1048352

https://bugzilla.suse.com/1048387

https://bugzilla.suse.com/1048790

https://bugzilla.suse.com/1052577

https://bugzilla.suse.com/1054017

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2017:2237-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.