{"affected":[{"ecosystem_specific":{"binaries":[{"libdcerpc-binding0":"4.2.4-16.1","libdcerpc-binding0-32bit":"4.2.4-16.1","libdcerpc0":"4.2.4-16.1","libdcerpc0-32bit":"4.2.4-16.1","libgensec0":"4.2.4-16.1","libgensec0-32bit":"4.2.4-16.1","libndr-krb5pac0":"4.2.4-16.1","libndr-krb5pac0-32bit":"4.2.4-16.1","libndr-nbt0":"4.2.4-16.1","libndr-nbt0-32bit":"4.2.4-16.1","libndr-standard0":"4.2.4-16.1","libndr-standard0-32bit":"4.2.4-16.1","libndr0":"4.2.4-16.1","libndr0-32bit":"4.2.4-16.1","libnetapi0":"4.2.4-16.1","libnetapi0-32bit":"4.2.4-16.1","libregistry0":"4.2.4-16.1","libsamba-credentials0":"4.2.4-16.1","libsamba-credentials0-32bit":"4.2.4-16.1","libsamba-hostconfig0":"4.2.4-16.1","libsamba-hostconfig0-32bit":"4.2.4-16.1","libsamba-passdb0":"4.2.4-16.1","libsamba-passdb0-32bit":"4.2.4-16.1","libsamba-util0":"4.2.4-16.1","libsamba-util0-32bit":"4.2.4-16.1","libsamdb0":"4.2.4-16.1","libsamdb0-32bit":"4.2.4-16.1","libsmbclient-raw0":"4.2.4-16.1","libsmbclient-raw0-32bit":"4.2.4-16.1","libsmbclient0":"4.2.4-16.1","libsmbclient0-32bit":"4.2.4-16.1","libsmbconf0":"4.2.4-16.1","libsmbconf0-32bit":"4.2.4-16.1","libsmbldap0":"4.2.4-16.1","libsmbldap0-32bit":"4.2.4-16.1","libtevent-util0":"4.2.4-16.1","libtevent-util0-32bit":"4.2.4-16.1","libwbclient0":"4.2.4-16.1","libwbclient0-32bit":"4.2.4-16.1","samba":"4.2.4-16.1","samba-32bit":"4.2.4-16.1","samba-client":"4.2.4-16.1","samba-client-32bit":"4.2.4-16.1","samba-doc":"4.2.4-16.1","samba-libs":"4.2.4-16.1","samba-libs-32bit":"4.2.4-16.1","samba-winbind":"4.2.4-16.1","samba-winbind-32bit":"4.2.4-16.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Desktop 12 SP1","name":"samba","purl":"pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.2.4-16.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"ctdb":"4.2.4-16.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Availability Extension 12 SP1","name":"samba","purl":"pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.2.4-16.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"ctdb-devel":"4.2.4-16.1","libdcerpc-atsvc-devel":"4.2.4-16.1","libdcerpc-atsvc0":"4.2.4-16.1","libdcerpc-devel":"4.2.4-16.1","libdcerpc-samr-devel":"4.2.4-16.1","libdcerpc-samr0":"4.2.4-16.1","libgensec-devel":"4.2.4-16.1","libndr-devel":"4.2.4-16.1","libndr-krb5pac-devel":"4.2.4-16.1","libndr-nbt-devel":"4.2.4-16.1","libndr-standard-devel":"4.2.4-16.1","libnetapi-devel":"4.2.4-16.1","libregistry-devel":"4.2.4-16.1","libsamba-credentials-devel":"4.2.4-16.1","libsamba-hostconfig-devel":"4.2.4-16.1","libsamba-passdb-devel":"4.2.4-16.1","libsamba-policy-devel":"4.2.4-16.1","libsamba-policy0":"4.2.4-16.1","libsamba-util-devel":"4.2.4-16.1","libsamdb-devel":"4.2.4-16.1","libsmbclient-devel":"4.2.4-16.1","libsmbclient-raw-devel":"4.2.4-16.1","libsmbconf-devel":"4.2.4-16.1","libsmbldap-devel":"4.2.4-16.1","libtevent-util-devel":"4.2.4-16.1","libwbclient-devel":"4.2.4-16.1","samba-core-devel":"4.2.4-16.1","samba-test-devel":"4.2.4-16.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Software Development Kit 12 SP1","name":"samba","purl":"pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.2.4-16.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libdcerpc-binding0":"4.2.4-16.1","libdcerpc-binding0-32bit":"4.2.4-16.1","libdcerpc0":"4.2.4-16.1","libdcerpc0-32bit":"4.2.4-16.1","libgensec0":"4.2.4-16.1","libgensec0-32bit":"4.2.4-16.1","libndr-krb5pac0":"4.2.4-16.1","libndr-krb5pac0-32bit":"4.2.4-16.1","libndr-nbt0":"4.2.4-16.1","libndr-nbt0-32bit":"4.2.4-16.1","libndr-standard0":"4.2.4-16.1","libndr-standard0-32bit":"4.2.4-16.1","libndr0":"4.2.4-16.1","libndr0-32bit":"4.2.4-16.1","libnetapi0":"4.2.4-16.1","libnetapi0-32bit":"4.2.4-16.1","libregistry0":"4.2.4-16.1","libsamba-credentials0":"4.2.4-16.1","libsamba-credentials0-32bit":"4.2.4-16.1","libsamba-hostconfig0":"4.2.4-16.1","libsamba-hostconfig0-32bit":"4.2.4-16.1","libsamba-passdb0":"4.2.4-16.1","libsamba-passdb0-32bit":"4.2.4-16.1","libsamba-util0":"4.2.4-16.1","libsamba-util0-32bit":"4.2.4-16.1","libsamdb0":"4.2.4-16.1","libsamdb0-32bit":"4.2.4-16.1","libsmbclient-raw0":"4.2.4-16.1","libsmbclient-raw0-32bit":"4.2.4-16.1","libsmbclient0":"4.2.4-16.1","libsmbclient0-32bit":"4.2.4-16.1","libsmbconf0":"4.2.4-16.1","libsmbconf0-32bit":"4.2.4-16.1","libsmbldap0":"4.2.4-16.1","libsmbldap0-32bit":"4.2.4-16.1","libtevent-util0":"4.2.4-16.1","libtevent-util0-32bit":"4.2.4-16.1","libwbclient0":"4.2.4-16.1","libwbclient0-32bit":"4.2.4-16.1","samba":"4.2.4-16.1","samba-32bit":"4.2.4-16.1","samba-client":"4.2.4-16.1","samba-client-32bit":"4.2.4-16.1","samba-doc":"4.2.4-16.1","samba-libs":"4.2.4-16.1","samba-libs-32bit":"4.2.4-16.1","samba-winbind":"4.2.4-16.1","samba-winbind-32bit":"4.2.4-16.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 12 SP1","name":"samba","purl":"pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.2.4-16.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libdcerpc-binding0":"4.2.4-16.1","libdcerpc-binding0-32bit":"4.2.4-16.1","libdcerpc0":"4.2.4-16.1","libdcerpc0-32bit":"4.2.4-16.1","libgensec0":"4.2.4-16.1","libgensec0-32bit":"4.2.4-16.1","libndr-krb5pac0":"4.2.4-16.1","libndr-krb5pac0-32bit":"4.2.4-16.1","libndr-nbt0":"4.2.4-16.1","libndr-nbt0-32bit":"4.2.4-16.1","libndr-standard0":"4.2.4-16.1","libndr-standard0-32bit":"4.2.4-16.1","libndr0":"4.2.4-16.1","libndr0-32bit":"4.2.4-16.1","libnetapi0":"4.2.4-16.1","libnetapi0-32bit":"4.2.4-16.1","libregistry0":"4.2.4-16.1","libsamba-credentials0":"4.2.4-16.1","libsamba-credentials0-32bit":"4.2.4-16.1","libsamba-hostconfig0":"4.2.4-16.1","libsamba-hostconfig0-32bit":"4.2.4-16.1","libsamba-passdb0":"4.2.4-16.1","libsamba-passdb0-32bit":"4.2.4-16.1","libsamba-util0":"4.2.4-16.1","libsamba-util0-32bit":"4.2.4-16.1","libsamdb0":"4.2.4-16.1","libsamdb0-32bit":"4.2.4-16.1","libsmbclient-raw0":"4.2.4-16.1","libsmbclient-raw0-32bit":"4.2.4-16.1","libsmbclient0":"4.2.4-16.1","libsmbclient0-32bit":"4.2.4-16.1","libsmbconf0":"4.2.4-16.1","libsmbconf0-32bit":"4.2.4-16.1","libsmbldap0":"4.2.4-16.1","libsmbldap0-32bit":"4.2.4-16.1","libtevent-util0":"4.2.4-16.1","libtevent-util0-32bit":"4.2.4-16.1","libwbclient0":"4.2.4-16.1","libwbclient0-32bit":"4.2.4-16.1","samba":"4.2.4-16.1","samba-32bit":"4.2.4-16.1","samba-client":"4.2.4-16.1","samba-client-32bit":"4.2.4-16.1","samba-doc":"4.2.4-16.1","samba-libs":"4.2.4-16.1","samba-libs-32bit":"4.2.4-16.1","samba-winbind":"4.2.4-16.1","samba-winbind-32bit":"4.2.4-16.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP1","name":"samba","purl":"pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.2.4-16.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"samba was updated to fix seven security issues.\n\nThese security issues were fixed:\n- CVE-2015-5370: DCERPC server and client were vulnerable to DOS and MITM attacks (bsc#936862).\n- CVE-2016-2110: A man-in-the-middle could have downgraded NTLMSSP authentication (bsc#973031).\n- CVE-2016-2111: Domain controller netlogon member computer could have been spoofed (bsc#973032).\n- CVE-2016-2112: LDAP conenctions were vulnerable to downgrade and MITM attack (bsc#973033).\n- CVE-2016-2113: TLS certificate validation were missing (bsc#973034).\n- CVE-2016-2115: Named pipe IPC were vulnerable to MITM attacks (bsc#973036).\n- CVE-2016-2118: 'Badlock' DCERPC impersonation of authenticated account were possible (bsc#971965).\n\nThese non-security issues were fixed:\n- bsc#974629: Fix samba.tests.messaging test and prevent potential tdb corruption by removing obsolete now invalid tdb_close call.\n- bsc#973832: Obsolete libsmbsharemodes0 from samba-libs and libsmbsharemodes-devel from samba-core-devel.\n- bsc#972197: Obsolete libsmbclient from libsmbclient0 and libpdb-devel from libsamba-passdb-devel while not providing it.\n- Getting and setting Windows ACLs on symlinks can change permissions on link\n- bsc#924519: Upgrade on-disk FSRVP server state to new version.\n- bsc#968973: Only obsolete but do not provide gplv2/3 package names.\n- bso#6482: s3:utils/smbget: Fix recursive download.\n- bso#10489: s3: smbd: posix_acls: Fix check for setting u:g:o entry on a filesystem with no ACL support.\n- bso#11643: docs: Add example for domain logins to smbspool man page.\n- bso#11690: s3-client: Add a KRB5 wrapper for smbspool.\n- bso#11708: loadparm: Fix memory leak issue.\n- bso#11714: lib/tsocket: Work around sockets not supporting FIONREAD.\n- bso#11719: ctdb-scripts: Drop use of 'smbcontrol winbindd ip-dropped ...'.\n- bso#11727: s3:smbd:open: Skip redundant call to file_set_dosmode when creating a new file.\n- bso#11732: param: Fix str_list_v3 to accept ';' again.\n- bso#11740: Real memeory leak(buildup) issue in loadparm.\n","id":"SUSE-SU-2016:1024-1","modified":"2016-04-12T18:42:33Z","published":"2016-04-12T18:42:33Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2016/suse-su-20161024-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/924519"},{"type":"REPORT","url":"https://bugzilla.suse.com/936862"},{"type":"REPORT","url":"https://bugzilla.suse.com/968973"},{"type":"REPORT","url":"https://bugzilla.suse.com/971965"},{"type":"REPORT","url":"https://bugzilla.suse.com/972197"},{"type":"REPORT","url":"https://bugzilla.suse.com/973031"},{"type":"REPORT","url":"https://bugzilla.suse.com/973032"},{"type":"REPORT","url":"https://bugzilla.suse.com/973033"},{"type":"REPORT","url":"https://bugzilla.suse.com/973034"},{"type":"REPORT","url":"https://bugzilla.suse.com/973036"},{"type":"REPORT","url":"https://bugzilla.suse.com/973832"},{"type":"REPORT","url":"https://bugzilla.suse.com/974629"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-5370"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-2110"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-2111"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-2112"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-2113"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-2115"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-2118"}],"related":["CVE-2015-5370","CVE-2016-2110","CVE-2016-2111","CVE-2016-2112","CVE-2016-2113","CVE-2016-2115","CVE-2016-2118"],"summary":"Security update for samba","upstream":["CVE-2015-5370","CVE-2016-2110","CVE-2016-2111","CVE-2016-2112","CVE-2016-2113","CVE-2016-2115","CVE-2016-2118"]}