SuSE: 2017:3104-1: important: samba
Summary
This update for samba fixes the following issues: Security issues fixed: - CVE-2017-14746: Use-after-free vulnerability (bsc#1060427). - CVE-2017-15275: Server heap memory information leak (bsc#1063008). Bug fixes: - Update 'winbind expand groups' doc in smb.conf man page (bsc#1027593). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1919=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1919=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1919=1 - SUSE Linux Enterprise High Availability 12-SP2: zypper in -t patch SUSE-SLE-HA-12-SP2-2017-1919=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1919=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): libsmbclient-devel-4.4.2-38.14.1 libwbclient-devel-4.4.2-38.14.1 samba-debuginfo-4.4.2-38.14.1 samba-debugsource-4.4.2-38.14.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): libdcerpc-binding0-4.4.2-38.14.1 libdcerpc-binding0-debuginfo-4.4.2-38.14.1 libdcerpc0-4.4.2-38.14.1 libdcerpc0-debuginfo-4.4.2-38.14.1 libndr-krb5pac0-4.4.2-38.14.1 libndr-krb5pac0-debuginfo-4.4.2-38.14.1 libndr-nbt0-4.4.2-38.14.1 libndr-nbt0-debuginfo-4.4.2-38.14.1 libndr-standard0-4.4.2-38.14.1 libndr-standard0-debuginfo-4.4.2-38.14.1 libndr0-4.4.2-38.14.1 libndr0-debuginfo-4.4.2-38.14.1 libnetapi0-4.4.2-38.14.1 libnetapi0-debuginfo-4.4.2-38.14.1 libsamba-credentials0-4.4.2-38.14.1 libsamba-credentials0-debuginfo-4.4.2-38.14.1 libsamba-errors0-4.4.2-38.14.1 libsamba-errors0-debuginfo-4.4.2-38.14.1 libsamba-hostconfig0-4.4.2-38.14.1 libsamba-hostconfig0-debuginfo-4.4.2-38.14.1 libsamba-passdb0-4.4.2-38.14.1 libsamba-passdb0-debuginfo-4.4.2-38.14.1 libsamba-util0-4.4.2-38.14.1 libsamba-util0-debuginfo-4.4.2-38.14.1 libsamdb0-4.4.2-38.14.1 libsamdb0-debuginfo-4.4.2-38.14.1 libsmbclient0-4.4.2-38.14.1 libsmbclient0-debuginfo-4.4.2-38.14.1 libsmbconf0-4.4.2-38.14.1 libsmbconf0-debuginfo-4.4.2-38.14.1 libsmbldap0-4.4.2-38.14.1 libsmbldap0-debuginfo-4.4.2-38.14.1 libtevent-util0-4.4.2-38.14.1 libtevent-util0-debuginfo-4.4.2-38.14.1 libwbclient0-4.4.2-38.14.1 libwbclient0-debuginfo-4.4.2-38.14.1 samba-4.4.2-38.14.1 samba-client-4.4.2-38.14.1 samba-client-debuginfo-4.4.2-38.14.1 samba-debuginfo-4.4.2-38.14.1 samba-debugsource-4.4.2-38.14.1 samba-libs-4.4.2-38.14.1 samba-libs-debuginfo-4.4.2-38.14.1 samba-winbind-4.4.2-38.14.1 samba-winbind-debuginfo-4.4.2-38.14.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (noarch): samba-doc-4.4.2-38.14.1 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): libdcerpc-binding0-4.4.2-38.14.1 libdcerpc-binding0-debuginfo-4.4.2-38.14.1 libdcerpc0-4.4.2-38.14.1 libdcerpc0-debuginfo-4.4.2-38.14.1 libndr-krb5pac0-4.4.2-38.14.1 libndr-krb5pac0-debuginfo-4.4.2-38.14.1 libndr-nbt0-4.4.2-38.14.1 libndr-nbt0-debuginfo-4.4.2-38.14.1 libndr-standard0-4.4.2-38.14.1 libndr-standard0-debuginfo-4.4.2-38.14.1 libndr0-4.4.2-38.14.1 libndr0-debuginfo-4.4.2-38.14.1 libnetapi0-4.4.2-38.14.1 libnetapi0-debuginfo-4.4.2-38.14.1 libsamba-credentials0-4.4.2-38.14.1 libsamba-credentials0-debuginfo-4.4.2-38.14.1 libsamba-errors0-4.4.2-38.14.1 libsamba-errors0-debuginfo-4.4.2-38.14.1 libsamba-hostconfig0-4.4.2-38.14.1 libsamba-hostconfig0-debuginfo-4.4.2-38.14.1 libsamba-passdb0-4.4.2-38.14.1 libsamba-passdb0-debuginfo-4.4.2-38.14.1 libsamba-util0-4.4.2-38.14.1 libsamba-util0-debuginfo-4.4.2-38.14.1 libsamdb0-4.4.2-38.14.1 libsamdb0-debuginfo-4.4.2-38.14.1 libsmbclient0-4.4.2-38.14.1 libsmbclient0-debuginfo-4.4.2-38.14.1 libsmbconf0-4.4.2-38.14.1 libsmbconf0-debuginfo-4.4.2-38.14.1 libsmbldap0-4.4.2-38.14.1 libsmbldap0-debuginfo-4.4.2-38.14.1 libtevent-util0-4.4.2-38.14.1 libtevent-util0-debuginfo-4.4.2-38.14.1 libwbclient0-4.4.2-38.14.1 libwbclient0-debuginfo-4.4.2-38.14.1 samba-4.4.2-38.14.1 samba-client-4.4.2-38.14.1 samba-client-debuginfo-4.4.2-38.14.1 samba-debuginfo-4.4.2-38.14.1 samba-debugsource-4.4.2-38.14.1 samba-libs-4.4.2-38.14.1 samba-libs-debuginfo-4.4.2-38.14.1 samba-winbind-4.4.2-38.14.1 samba-winbind-debuginfo-4.4.2-38.14.1 - SUSE Linux Enterprise Server 12-SP2 (s390x x86_64): libdcerpc-binding0-32bit-4.4.2-38.14.1 libdcerpc-binding0-debuginfo-32bit-4.4.2-38.14.1 libdcerpc0-32bit-4.4.2-38.14.1 libdcerpc0-debuginfo-32bit-4.4.2-38.14.1 libndr-krb5pac0-32bit-4.4.2-38.14.1 libndr-krb5pac0-debuginfo-32bit-4.4.2-38.14.1 libndr-nbt0-32bit-4.4.2-38.14.1 libndr-nbt0-debuginfo-32bit-4.4.2-38.14.1 libndr-standard0-32bit-4.4.2-38.14.1 libndr-standard0-debuginfo-32bit-4.4.2-38.14.1 libndr0-32bit-4.4.2-38.14.1 libndr0-debuginfo-32bit-4.4.2-38.14.1 libnetapi0-32bit-4.4.2-38.14.1 libnetapi0-debuginfo-32bit-4.4.2-38.14.1 libsamba-credentials0-32bit-4.4.2-38.14.1 libsamba-credentials0-debuginfo-32bit-4.4.2-38.14.1 libsamba-errors0-32bit-4.4.2-38.14.1 libsamba-errors0-debuginfo-32bit-4.4.2-38.14.1 libsamba-hostconfig0-32bit-4.4.2-38.14.1 libsamba-hostconfig0-debuginfo-32bit-4.4.2-38.14.1 libsamba-passdb0-32bit-4.4.2-38.14.1 libsamba-passdb0-debuginfo-32bit-4.4.2-38.14.1 libsamba-util0-32bit-4.4.2-38.14.1 libsamba-util0-debuginfo-32bit-4.4.2-38.14.1 libsamdb0-32bit-4.4.2-38.14.1 libsamdb0-debuginfo-32bit-4.4.2-38.14.1 libsmbclient0-32bit-4.4.2-38.14.1 libsmbclient0-debuginfo-32bit-4.4.2-38.14.1 libsmbconf0-32bit-4.4.2-38.14.1 libsmbconf0-debuginfo-32bit-4.4.2-38.14.1 libsmbldap0-32bit-4.4.2-38.14.1 libsmbldap0-debuginfo-32bit-4.4.2-38.14.1 libtevent-util0-32bit-4.4.2-38.14.1 libtevent-util0-debuginfo-32bit-4.4.2-38.14.1 libwbclient0-32bit-4.4.2-38.14.1 libwbclient0-debuginfo-32bit-4.4.2-38.14.1 samba-client-32bit-4.4.2-38.14.1 samba-client-debuginfo-32bit-4.4.2-38.14.1 samba-libs-32bit-4.4.2-38.14.1 samba-libs-debuginfo-32bit-4.4.2-38.14.1 samba-winbind-32bit-4.4.2-38.14.1 samba-winbind-debuginfo-32bit-4.4.2-38.14.1 - SUSE Linux Enterprise Server 12-SP2 (noarch): samba-doc-4.4.2-38.14.1 - SUSE Linux Enterprise High Availability 12-SP2 (ppc64le s390x x86_64): ctdb-4.4.2-38.14.1 ctdb-debuginfo-4.4.2-38.14.1 samba-debuginfo-4.4.2-38.14.1 samba-debugsource-4.4.2-38.14.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): libdcerpc-binding0-32bit-4.4.2-38.14.1 libdcerpc-binding0-4.4.2-38.14.1 libdcerpc-binding0-debuginfo-32bit-4.4.2-38.14.1 libdcerpc-binding0-debuginfo-4.4.2-38.14.1 libdcerpc0-32bit-4.4.2-38.14.1 libdcerpc0-4.4.2-38.14.1 libdcerpc0-debuginfo-32bit-4.4.2-38.14.1 libdcerpc0-debuginfo-4.4.2-38.14.1 libndr-krb5pac0-32bit-4.4.2-38.14.1 libndr-krb5pac0-4.4.2-38.14.1 libndr-krb5pac0-debuginfo-32bit-4.4.2-38.14.1 libndr-krb5pac0-debuginfo-4.4.2-38.14.1 libndr-nbt0-32bit-4.4.2-38.14.1 libndr-nbt0-4.4.2-38.14.1 libndr-nbt0-debuginfo-32bit-4.4.2-38.14.1 libndr-nbt0-debuginfo-4.4.2-38.14.1 libndr-standard0-32bit-4.4.2-38.14.1 libndr-standard0-4.4.2-38.14.1 libndr-standard0-debuginfo-32bit-4.4.2-38.14.1 libndr-standard0-debuginfo-4.4.2-38.14.1 libndr0-32bit-4.4.2-38.14.1 libndr0-4.4.2-38.14.1 libndr0-debuginfo-32bit-4.4.2-38.14.1 libndr0-debuginfo-4.4.2-38.14.1 libnetapi0-32bit-4.4.2-38.14.1 libnetapi0-4.4.2-38.14.1 libnetapi0-debuginfo-32bit-4.4.2-38.14.1 libnetapi0-debuginfo-4.4.2-38.14.1 libsamba-credentials0-32bit-4.4.2-38.14.1 libsamba-credentials0-4.4.2-38.14.1 libsamba-credentials0-debuginfo-32bit-4.4.2-38.14.1 libsamba-credentials0-debuginfo-4.4.2-38.14.1 libsamba-errors0-32bit-4.4.2-38.14.1 libsamba-errors0-4.4.2-38.14.1 libsamba-errors0-debuginfo-32bit-4.4.2-38.14.1 libsamba-errors0-debuginfo-4.4.2-38.14.1 libsamba-hostconfig0-32bit-4.4.2-38.14.1 libsamba-hostconfig0-4.4.2-38.14.1 libsamba-hostconfig0-debuginfo-32bit-4.4.2-38.14.1 libsamba-hostconfig0-debuginfo-4.4.2-38.14.1 libsamba-passdb0-32bit-4.4.2-38.14.1 libsamba-passdb0-4.4.2-38.14.1 libsamba-passdb0-debuginfo-32bit-4.4.2-38.14.1 libsamba-passdb0-debuginfo-4.4.2-38.14.1 libsamba-util0-32bit-4.4.2-38.14.1 libsamba-util0-4.4.2-38.14.1 libsamba-util0-debuginfo-32bit-4.4.2-38.14.1 libsamba-util0-debuginfo-4.4.2-38.14.1 libsamdb0-32bit-4.4.2-38.14.1 libsamdb0-4.4.2-38.14.1 libsamdb0-debuginfo-32bit-4.4.2-38.14.1 libsamdb0-debuginfo-4.4.2-38.14.1 libsmbclient0-32bit-4.4.2-38.14.1 libsmbclient0-4.4.2-38.14.1 libsmbclient0-debuginfo-32bit-4.4.2-38.14.1 libsmbclient0-debuginfo-4.4.2-38.14.1 libsmbconf0-32bit-4.4.2-38.14.1 libsmbconf0-4.4.2-38.14.1 libsmbconf0-debuginfo-32bit-4.4.2-38.14.1 libsmbconf0-debuginfo-4.4.2-38.14.1 libsmbldap0-32bit-4.4.2-38.14.1 libsmbldap0-4.4.2-38.14.1 libsmbldap0-debuginfo-32bit-4.4.2-38.14.1 libsmbldap0-debuginfo-4.4.2-38.14.1 libtevent-util0-32bit-4.4.2-38.14.1 libtevent-util0-4.4.2-38.14.1 libtevent-util0-debuginfo-32bit-4.4.2-38.14.1 libtevent-util0-debuginfo-4.4.2-38.14.1 libwbclient0-32bit-4.4.2-38.14.1 libwbclient0-4.4.2-38.14.1 libwbclient0-debuginfo-32bit-4.4.2-38.14.1 libwbclient0-debuginfo-4.4.2-38.14.1 samba-4.4.2-38.14.1 samba-client-32bit-4.4.2-38.14.1 samba-client-4.4.2-38.14.1 samba-client-debuginfo-32bit-4.4.2-38.14.1 samba-client-debuginfo-4.4.2-38.14.1 samba-debuginfo-4.4.2-38.14.1 samba-debugsource-4.4.2-38.14.1 samba-libs-32bit-4.4.2-38.14.1 samba-libs-4.4.2-38.14.1 samba-libs-debuginfo-32bit-4.4.2-38.14.1 samba-libs-debuginfo-4.4.2-38.14.1 samba-winbind-32bit-4.4.2-38.14.1 samba-winbind-4.4.2-38.14.1 samba-winbind-debuginfo-32bit-4.4.2-38.14.1 samba-winbind-debuginfo-4.4.2-38.14.1 - SUSE Linux Enterprise Desktop 12-SP2 (noarch): samba-doc-4.4.2-38.14.1
References
#1027593 #1060427 #1063008
Cross- CVE-2017-14746 CVE-2017-15275
Affected Products:
SUSE Linux Enterprise Software Development Kit 12-SP2
SUSE Linux Enterprise Server for Raspberry Pi 12-SP2
SUSE Linux Enterprise Server 12-SP2
SUSE Linux Enterprise High Availability 12-SP2
SUSE Linux Enterprise Desktop 12-SP2
https://www.suse.com/security/cve/CVE-2017-14746.html
https://www.suse.com/security/cve/CVE-2017-15275.html
https://bugzilla.suse.com/1027593
https://bugzilla.suse.com/1060427
https://bugzilla.suse.com/1063008