{"affected":[{"ecosystem_specific":{"binaries":[{"ctdb":"4.11.14+git.202.344b137b75d-lp152.3.16.1","ctdb-pcp-pmda":"4.11.14+git.202.344b137b75d-lp152.3.16.1","ctdb-tests":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libdcerpc-binding0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libdcerpc-binding0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libdcerpc-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libdcerpc-samr-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libdcerpc-samr0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libdcerpc-samr0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libdcerpc0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libdcerpc0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libndr-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libndr-krb5pac-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libndr-krb5pac0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libndr-krb5pac0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libndr-nbt-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libndr-nbt0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libndr-nbt0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libndr-standard-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libndr-standard0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libndr-standard0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libndr0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libndr0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libnetapi-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libnetapi-devel-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libnetapi0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libnetapi0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-credentials-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-credentials0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-credentials0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-errors-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-errors0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-errors0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-hostconfig-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-hostconfig0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-hostconfig0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-passdb-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-passdb0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-passdb0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-policy-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-policy-python3-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-policy0-python3":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-policy0-python3-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-util-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-util0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamba-util0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamdb-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamdb0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsamdb0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsmbclient-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsmbclient0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsmbclient0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsmbconf-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsmbconf0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsmbconf0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsmbldap-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsmbldap2":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libsmbldap2-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libtevent-util-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libtevent-util0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libtevent-util0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libwbclient-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libwbclient0":"4.11.14+git.202.344b137b75d-lp152.3.16.1","libwbclient0-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-ad-dc":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-ad-dc-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-ceph":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-client":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-client-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-core-devel":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-doc":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-dsdb-modules":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-libs":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-libs-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-libs-python3":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-libs-python3-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-python3":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-test":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-winbind":"4.11.14+git.202.344b137b75d-lp152.3.16.1","samba-winbind-32bit":"4.11.14+git.202.344b137b75d-lp152.3.16.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.2","name":"samba","purl":"pkg:rpm/opensuse/samba&distro=openSUSE%20Leap%2015.2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.11.14+git.202.344b137b75d-lp152.3.16.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for samba fixes the following issues:\n\nUpdate to samba 4.11.14\n\n- CVE-2020-14383: An authenticated user can crash the DCE/RPC DNS with easily crafted records (bsc#1177613).\n- CVE-2020-14323: Unprivileged user can crash winbind (bsc#1173994).\n- CVE-2020-14318: Missing permissions check in SMB1/2/3 ChangeNotify (bsc#1173902).\n- lib/util: Do not install /usr/bin/test_util\n- smbd: don't log success as error\n- idmap_ad does not deal properly with a RFC4511 section 4.4.1 response;\n- winbind: Fix a memleak\n- idmap_ad: Pass tldap debug messages on to DEBUG()\n- lib/replace: Move lib/replace/closefrom.c from ROKEN_HOSTCC_SOURCE to REPLACE_HOSTCC_SOURCE\n- ctdb disable/enable can fail due to race condition\n\nThis update was imported from the SUSE:SLE-15-SP2:Update update project.","id":"openSUSE-SU-2020:1819-1","modified":"2020-11-02T05:26:56Z","published":"2020-11-02T05:26:56Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YCRJNTQTA2BOMDKWPLFYNJRR3S6WWE74/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1173902"},{"type":"REPORT","url":"https://bugzilla.suse.com/1173994"},{"type":"REPORT","url":"https://bugzilla.suse.com/1177613"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-14318"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-14323"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-14383"}],"related":["CVE-2020-14318","CVE-2020-14323","CVE-2020-14383"],"summary":"Security update for samba","upstream":["CVE-2020-14318","CVE-2020-14323","CVE-2020-14383"]}