openSUSE Security Update : samba (openSUSE-SU-2013:0933-1)

medium Nessus Plugin ID 75007

Synopsis

The remote openSUSE host is missing a security update.

Description

This submission supersedes the Samba packages currently available from http://download.openSUSE.org/pub/opensuse/update/ for openSUSE versions 12.1 through 12.3.

- Add support for PFC_FLAG_OBJECT_UUID when parsing packets; (bso#9382).

- Fix 'guest ok', 'force user' and 'force group' for guest users; (bso#9746).

- Fix 'map untrusted to domain' with NTLMv2; (bso#9817).

- Fix crash bug in Winbind; (bso#9854).

- Fix panic in nt_printer_publish_ads; (bso#9830).

Solution

Update the affected samba packages.

See Also

http://download.openSUSE.org/pub/opensuse/update/

https://bugzilla.novell.com/show_bug.cgi?id=786350

https://bugzilla.novell.com/show_bug.cgi?id=792294

https://bugzilla.novell.com/show_bug.cgi?id=800782

https://bugzilla.novell.com/show_bug.cgi?id=802031

https://bugzilla.novell.com/show_bug.cgi?id=807334

https://bugzilla.novell.com/show_bug.cgi?id=811975

https://bugzilla.samba.org/show_bug.cgi?id=9637

https://bugzilla.samba.org/show_bug.cgi?id=9646

https://bugzilla.samba.org/show_bug.cgi?id=9650

https://bugzilla.samba.org/show_bug.cgi?id=9658

https://bugzilla.samba.org/show_bug.cgi?id=9684

https://bugzilla.samba.org/show_bug.cgi?id=9686

https://bugzilla.samba.org/show_bug.cgi?id=9699

https://bugzilla.samba.org/show_bug.cgi?id=9701

https://bugzilla.samba.org/show_bug.cgi?id=9723

https://bugzilla.samba.org/show_bug.cgi?id=9724

https://bugzilla.samba.org/show_bug.cgi?id=9727

https://bugzilla.samba.org/show_bug.cgi?id=9733

https://bugzilla.samba.org/show_bug.cgi?id=9735

https://bugzilla.samba.org/show_bug.cgi?id=9736

https://bugzilla.samba.org/show_bug.cgi?id=9830

https://bugzilla.samba.org/show_bug.cgi?id=9854

https://lists.opensuse.org/opensuse-updates/2013-05/msg00029.html

https://lists.opensuse.org/opensuse-updates/2013-06/msg00070.html

https://bugzilla.novell.com/show_bug.cgi?id=815994

https://bugzilla.samba.org/show_bug.cgi?id=7825

https://bugzilla.samba.org/show_bug.cgi?id=9039

https://bugzilla.samba.org/show_bug.cgi?id=9130

https://bugzilla.samba.org/show_bug.cgi?id=9139

https://bugzilla.samba.org/show_bug.cgi?id=9378

https://bugzilla.samba.org/show_bug.cgi?id=9382

https://bugzilla.samba.org/show_bug.cgi?id=9474

https://bugzilla.samba.org/show_bug.cgi?id=9519

https://bugzilla.samba.org/show_bug.cgi?id=9541

https://bugzilla.samba.org/show_bug.cgi?id=9568

https://bugzilla.samba.org/show_bug.cgi?id=9571

https://bugzilla.samba.org/show_bug.cgi?id=9574

https://bugzilla.samba.org/show_bug.cgi?id=9585

https://bugzilla.samba.org/show_bug.cgi?id=9586

https://bugzilla.samba.org/show_bug.cgi?id=9587

https://bugzilla.samba.org/show_bug.cgi?id=9588

https://bugzilla.samba.org/show_bug.cgi?id=9625

https://bugzilla.samba.org/show_bug.cgi?id=9633

https://bugzilla.samba.org/show_bug.cgi?id=9746

https://bugzilla.samba.org/show_bug.cgi?id=9747

https://bugzilla.samba.org/show_bug.cgi?id=9748

https://bugzilla.samba.org/show_bug.cgi?id=9766

https://bugzilla.samba.org/show_bug.cgi?id=9775

https://bugzilla.samba.org/show_bug.cgi?id=9807

https://bugzilla.samba.org/show_bug.cgi?id=9809

https://bugzilla.samba.org/show_bug.cgi?id=9811

https://bugzilla.samba.org/show_bug.cgi?id=9817

Plugin Details

Severity: Medium

ID: 75007

File Name: openSUSE-2013-435.nasl

Version: 1.5

Type: local

Agent: unix

Published: 6/13/2014

Updated: 1/19/2021

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 2.7

CVSS v2

Risk Factor: Medium

Base Score: 4

Vector: CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:N

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:ldapsmb, p-cpe:/a:novell:opensuse:libldb-devel, p-cpe:/a:novell:opensuse:libldb1, p-cpe:/a:novell:opensuse:libldb1-32bit, p-cpe:/a:novell:opensuse:libldb1-debuginfo, p-cpe:/a:novell:opensuse:libldb1-debuginfo-32bit, p-cpe:/a:novell:opensuse:libnetapi-devel, p-cpe:/a:novell:opensuse:libnetapi0, p-cpe:/a:novell:opensuse:libnetapi0-debuginfo, p-cpe:/a:novell:opensuse:libsmbclient-devel, p-cpe:/a:novell:opensuse:libsmbclient0, p-cpe:/a:novell:opensuse:libsmbclient0-32bit, p-cpe:/a:novell:opensuse:libsmbclient0-debuginfo, p-cpe:/a:novell:opensuse:libsmbclient0-debuginfo-32bit, p-cpe:/a:novell:opensuse:libsmbsharemodes-devel, p-cpe:/a:novell:opensuse:libsmbsharemodes0, p-cpe:/a:novell:opensuse:libsmbsharemodes0-debuginfo, p-cpe:/a:novell:opensuse:libtalloc-devel, p-cpe:/a:novell:opensuse:libtalloc2, p-cpe:/a:novell:opensuse:libtalloc2-32bit, p-cpe:/a:novell:opensuse:libtalloc2-debuginfo, p-cpe:/a:novell:opensuse:libtalloc2-debuginfo-32bit, p-cpe:/a:novell:opensuse:libtdb-devel, p-cpe:/a:novell:opensuse:libtdb1, p-cpe:/a:novell:opensuse:libtdb1-32bit, p-cpe:/a:novell:opensuse:libtdb1-debuginfo, p-cpe:/a:novell:opensuse:libtdb1-debuginfo-32bit, p-cpe:/a:novell:opensuse:libtevent-devel, p-cpe:/a:novell:opensuse:libtevent0, p-cpe:/a:novell:opensuse:libtevent0-32bit, p-cpe:/a:novell:opensuse:libtevent0-debuginfo, p-cpe:/a:novell:opensuse:libtevent0-debuginfo-32bit, p-cpe:/a:novell:opensuse:libwbclient-devel, p-cpe:/a:novell:opensuse:libwbclient0, p-cpe:/a:novell:opensuse:libwbclient0-32bit, p-cpe:/a:novell:opensuse:libwbclient0-debuginfo, p-cpe:/a:novell:opensuse:libwbclient0-debuginfo-32bit, p-cpe:/a:novell:opensuse:samba, p-cpe:/a:novell:opensuse:samba-32bit, p-cpe:/a:novell:opensuse:samba-client, p-cpe:/a:novell:opensuse:samba-client-32bit, p-cpe:/a:novell:opensuse:samba-client-debuginfo, p-cpe:/a:novell:opensuse:samba-client-debuginfo-32bit, p-cpe:/a:novell:opensuse:samba-debuginfo, p-cpe:/a:novell:opensuse:samba-debuginfo-32bit, p-cpe:/a:novell:opensuse:samba-debugsource, p-cpe:/a:novell:opensuse:samba-devel, p-cpe:/a:novell:opensuse:samba-krb-printing, p-cpe:/a:novell:opensuse:samba-krb-printing-debuginfo, p-cpe:/a:novell:opensuse:samba-winbind, p-cpe:/a:novell:opensuse:samba-winbind-32bit, p-cpe:/a:novell:opensuse:samba-winbind-debuginfo, p-cpe:/a:novell:opensuse:samba-winbind-debuginfo-32bit, cpe:/o:novell:opensuse:12.1, cpe:/o:novell:opensuse:12.2, cpe:/o:novell:opensuse:12.3

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 5/14/2013

Reference Information

CVE: CVE-2013-0454