SUSE: 2022:0252-1 critical: samba
Summary
This update for samba fixes the following issues: - CVE-2021-44142: Fixed out-of-Bound Read/Write on Samba vfs_fruit module. (bsc#1194859) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-SP2-BCL: zypper in -t patch SUSE-SLE-SERVER-12-SP2-BCL-2022-252=1 Package List: - SUSE Linux Enterprise Server 12-SP2-BCL (noarch): samba-doc-4.4.2-38.48.1 - SUSE Linux Enterprise Server 12-SP2-BCL (x86_64): libdcerpc-binding0-32bit-4.4.2-38.48.1 libdcerpc-binding0-4.4.2-38.48.1 libdcerpc-binding0-debuginfo-32bit-4.4.2-38.48.1 libdcerpc-binding0-debuginfo-4.4.2-38.48.1 libdcerpc0-32bit-4.4.2-38.48.1 libdcerpc0-4.4.2-38.48.1 libdcerpc0-debuginfo-32bit-4.4.2-38.48.1 libdcerpc0-debuginfo-4.4.2-38.48.1 libndr-krb5pac0-32bit-4.4.2-38.48.1 libndr-krb5pac0-4.4.2-38.48.1 libndr-krb5pac0-debuginfo-32bit-4.4.2-38.48.1 libndr-krb5pac0-debuginfo-4.4.2-38.48.1 libndr-nbt0-32bit-4.4.2-38.48.1 libndr-nbt0-4.4.2-38.48.1 libndr-nbt0-debuginfo-32bit-4.4.2-38.48.1 libndr-nbt0-debuginfo-4.4.2-38.48.1 libndr-standard0-32bit-4.4.2-38.48.1 libndr-standard0-4.4.2-38.48.1 libndr-standard0-debuginfo-32bit-4.4.2-38.48.1 libndr-standard0-debuginfo-4.4.2-38.48.1 libndr0-32bit-4.4.2-38.48.1 libndr0-4.4.2-38.48.1 libndr0-debuginfo-32bit-4.4.2-38.48.1 libndr0-debuginfo-4.4.2-38.48.1 libnetapi0-32bit-4.4.2-38.48.1 libnetapi0-4.4.2-38.48.1 libnetapi0-debuginfo-32bit-4.4.2-38.48.1 libnetapi0-debuginfo-4.4.2-38.48.1 libsamba-credentials0-32bit-4.4.2-38.48.1 libsamba-credentials0-4.4.2-38.48.1 libsamba-credentials0-debuginfo-32bit-4.4.2-38.48.1 libsamba-credentials0-debuginfo-4.4.2-38.48.1 libsamba-errors0-32bit-4.4.2-38.48.1 libsamba-errors0-4.4.2-38.48.1 libsamba-errors0-debuginfo-32bit-4.4.2-38.48.1 libsamba-errors0-debuginfo-4.4.2-38.48.1 libsamba-hostconfig0-32bit-4.4.2-38.48.1 libsamba-hostconfig0-4.4.2-38.48.1 libsamba-hostconfig0-debuginfo-32bit-4.4.2-38.48.1 libsamba-hostconfig0-debuginfo-4.4.2-38.48.1 libsamba-passdb0-32bit-4.4.2-38.48.1 libsamba-passdb0-4.4.2-38.48.1 libsamba-passdb0-debuginfo-32bit-4.4.2-38.48.1 libsamba-passdb0-debuginfo-4.4.2-38.48.1 libsamba-util0-32bit-4.4.2-38.48.1 libsamba-util0-4.4.2-38.48.1 libsamba-util0-debuginfo-32bit-4.4.2-38.48.1 libsamba-util0-debuginfo-4.4.2-38.48.1 libsamdb0-32bit-4.4.2-38.48.1 libsamdb0-4.4.2-38.48.1 libsamdb0-debuginfo-32bit-4.4.2-38.48.1 libsamdb0-debuginfo-4.4.2-38.48.1 libsmbclient0-32bit-4.4.2-38.48.1 libsmbclient0-4.4.2-38.48.1 libsmbclient0-debuginfo-32bit-4.4.2-38.48.1 libsmbclient0-debuginfo-4.4.2-38.48.1 libsmbconf0-32bit-4.4.2-38.48.1 libsmbconf0-4.4.2-38.48.1 libsmbconf0-debuginfo-32bit-4.4.2-38.48.1 libsmbconf0-debuginfo-4.4.2-38.48.1 libsmbldap0-32bit-4.4.2-38.48.1 libsmbldap0-4.4.2-38.48.1 libsmbldap0-debuginfo-32bit-4.4.2-38.48.1 libsmbldap0-debuginfo-4.4.2-38.48.1 libtevent-util0-32bit-4.4.2-38.48.1 libtevent-util0-4.4.2-38.48.1 libtevent-util0-debuginfo-32bit-4.4.2-38.48.1 libtevent-util0-debuginfo-4.4.2-38.48.1 libwbclient0-32bit-4.4.2-38.48.1 libwbclient0-4.4.2-38.48.1 libwbclient0-debuginfo-32bit-4.4.2-38.48.1 libwbclient0-debuginfo-4.4.2-38.48.1 samba-4.4.2-38.48.1 samba-client-32bit-4.4.2-38.48.1 samba-client-4.4.2-38.48.1 samba-client-debuginfo-32bit-4.4.2-38.48.1 samba-client-debuginfo-4.4.2-38.48.1 samba-debuginfo-4.4.2-38.48.1 samba-debugsource-4.4.2-38.48.1 samba-libs-32bit-4.4.2-38.48.1 samba-libs-4.4.2-38.48.1 samba-libs-debuginfo-32bit-4.4.2-38.48.1 samba-libs-debuginfo-4.4.2-38.48.1 samba-winbind-32bit-4.4.2-38.48.1 samba-winbind-4.4.2-38.48.1 samba-winbind-debuginfo-32bit-4.4.2-38.48.1 samba-winbind-debuginfo-4.4.2-38.48.1
References
#1194859
Cross- CVE-2021-44142
CVSS scores:
CVE-2021-44142 (SUSE): 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Affected Products:
SUSE Linux Enterprise Server 12-SP2-BCL
https://www.suse.com/security/cve/CVE-2021-44142.html
https://bugzilla.suse.com/1194859