Detections
Analytics
SuSE 11.2 Security Update : Samba (SAT Patch Number 6211)
medium Nessus Plugin ID 58943
Language:
Synopsis
The remote SuSE 11 host is missing one or more security updates.Description
This update of Samba fixes one security issue and several bugs.The security fix is :
- Ensure that users cannot hand out their own privileges to everyone, only administrators are allowed to do that.
(CVE-2012-2111) The non-security bug fixes merged from upstream Samba are :
- Fix default name resolve order. (docs-xml, bso#7564).
- Fix a segfault in vfs_aio_fork. (s3-aio-fork, bso#8836).
- Remove whitespace in example samba.ldif. (docs, bso#8789)
- Move print_backend_init() behind init_system_info().
(s3-smbd, bso#8845)
- Prepend '/' to filename argument. (s3-docs, bso#8826)
Solution
Apply SAT patch number 6211.See Also
Plugin Details
Severity: Medium
ID: 58943
File Name: suse_11_ldapsmb-120424.nasl
Version: 1.11
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 5/1/2012
Updated: 1/19/2021
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Medium
Base Score: 6.5
Temporal Score: 4.8
Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P
Vulnerability Information
CPE: p-cpe:/a:novell:suse_linux:11:ldapsmb, p-cpe:/a:novell:suse_linux:11:libldb1, p-cpe:/a:novell:suse_linux:11:libldb1-32bit, p-cpe:/a:novell:suse_linux:11:libsmbclient0, p-cpe:/a:novell:suse_linux:11:libsmbclient0-32bit, p-cpe:/a:novell:suse_linux:11:libtalloc2, p-cpe:/a:novell:suse_linux:11:libtalloc2-32bit, p-cpe:/a:novell:suse_linux:11:libtdb1, p-cpe:/a:novell:suse_linux:11:libtdb1-32bit, p-cpe:/a:novell:suse_linux:11:libtevent0, p-cpe:/a:novell:suse_linux:11:libtevent0-32bit, p-cpe:/a:novell:suse_linux:11:libwbclient0, p-cpe:/a:novell:suse_linux:11:libwbclient0-32bit, p-cpe:/a:novell:suse_linux:11:samba, p-cpe:/a:novell:suse_linux:11:samba-32bit, p-cpe:/a:novell:suse_linux:11:samba-client, p-cpe:/a:novell:suse_linux:11:samba-client-32bit, p-cpe:/a:novell:suse_linux:11:samba-doc, p-cpe:/a:novell:suse_linux:11:samba-krb-printing, p-cpe:/a:novell:suse_linux:11:samba-winbind, p-cpe:/a:novell:suse_linux:11:samba-winbind-32bit, cpe:/o:novell:suse_linux:11
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Ease: No known exploits are available
Patch Publication Date: 4/24/2012
Reference Information
CVE: CVE-2012-2111
BID: 53307