openSUSE alert openSUSE-SU-2014:0857-1 (samba)

From:
    	     
 
opensuse-security@opensuse.org 
To:
    	     
 
opensuse-updates@opensuse.org 
Subject:
    	     
 
openSUSE-SU-2014:0857-1: moderate: samba: Threes 
Date:
    	     
 
Tue,  1 Jul 2014 12:06:11 +0200 (CEST)
Message-ID:
    	     
 
<20140701100611.4AB0D3213E@maintenance.suse.de>
   openSUSE Security Update: samba: Threes
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2014:0857-1
Rating:             moderate
References:         #685093 #872396 #879390 #880962 #883758 
Cross-References:   CVE-2014-0178 CVE-2014-0244 CVE-2014-3493
                   
Affected Products:
                    openSUSE 12.3
______________________________________________________________________________

   An update that solves three vulnerabilities and has two
   fixes is now available.

Description:

   samba was updated to fix three security issues and two non-security issues.

   These security issues were fixed:
   - Fix segmentation fault in smbd_marshall_dir_entry()'s SMB_FIND_FILE_UNIX
     handler (CVE-2014-3493)
   - Fix nmbd denial of service (CVE-2014-0244)
   - Fix malformed FSCTL_SRV_ENUMERATE_SNAPSHOTS response (CVE-2014-0178)

   These non-security issues were fixed:
   - Fix printer job purging; (bso#10612); (bnc#879390).
   - Package the get_printing_ticket binary with 0700 permissions on
     post-11.4 systems; (bnc#685093).


Patch Instructions:

   To install this openSUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - openSUSE 12.3:

      zypper in -t patch openSUSE-2014-449

   To bring your system up-to-date, use "zypper patch".


Package List:

   - openSUSE 12.3 (i586 x86_64):

      libnetapi-devel-3.6.12-59.23.1
      libnetapi0-3.6.12-59.23.1
      libnetapi0-debuginfo-3.6.12-59.23.1
      libsmbclient-devel-3.6.12-59.23.1
      libsmbclient0-3.6.12-59.23.1
      libsmbclient0-debuginfo-3.6.12-59.23.1
      libsmbsharemodes-devel-3.6.12-59.23.1
      libsmbsharemodes0-3.6.12-59.23.1
      libsmbsharemodes0-debuginfo-3.6.12-59.23.1
      libwbclient-devel-3.6.12-59.23.1
      libwbclient0-3.6.12-59.23.1
      libwbclient0-debuginfo-3.6.12-59.23.1
      samba-3.6.12-59.23.1
      samba-client-3.6.12-59.23.1
      samba-client-debuginfo-3.6.12-59.23.1
      samba-debuginfo-3.6.12-59.23.1
      samba-debugsource-3.6.12-59.23.1
      samba-devel-3.6.12-59.23.1
      samba-krb-printing-3.6.12-59.23.1
      samba-krb-printing-debuginfo-3.6.12-59.23.1
      samba-winbind-3.6.12-59.23.1
      samba-winbind-debuginfo-3.6.12-59.23.1

   - openSUSE 12.3 (x86_64):

      libsmbclient0-32bit-3.6.12-59.23.1
      libsmbclient0-debuginfo-32bit-3.6.12-59.23.1
      libwbclient0-32bit-3.6.12-59.23.1
      libwbclient0-debuginfo-32bit-3.6.12-59.23.1
      samba-32bit-3.6.12-59.23.1
      samba-client-32bit-3.6.12-59.23.1
      samba-client-debuginfo-32bit-3.6.12-59.23.1
      samba-debuginfo-32bit-3.6.12-59.23.1
      samba-winbind-32bit-3.6.12-59.23.1
      samba-winbind-debuginfo-32bit-3.6.12-59.23.1

   - openSUSE 12.3 (noarch):

      samba-doc-3.6.12-59.23.1


References:

   http://support.novell.com/security/cve/CVE-2014-0178.html
   http://support.novell.com/security/cve/CVE-2014-0244.html
   http://support.novell.com/security/cve/CVE-2014-3493.html
   https://bugzilla.novell.com/685093
   https://bugzilla.novell.com/872396
   https://bugzilla.novell.com/879390
   https://bugzilla.novell.com/880962
   https://bugzilla.novell.com/883758