Security update for samba
This update for samba fixes the following issues:
Security issues fixed:
- CVE-2019-14907: Fixed a Server-side crash after charset conversion failure during NTLMSSP processing (bsc#1160888).
- CVE-2019-14902: Fixed an issue where automatic replication of ACLs down subtree on AD Directory is not working (bsc#1160850).
- CVE-2019-19344: Fixed a server crash when using dns zone scavenging = yes (bsc#1160852).
Non-security issue fixed:
- Fixed Ceph snapshot path handling relative to root (bsc#1141320).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
-
Submitted by
Noel Power (npower)
Fixed bugs
bnc#1141320
Samba vfs_ceph_snapshots fails to find snapdir for relative paths at share root
bnc#1160888
VUL-0: EMBARGOED: CVE-2019-14907: samba: server-side crash after charset conversion failure (eg during NTLMSSP processing)
bnc#1160852
VUL-0: EMBARGOED: CVE-2019-19344: samba: server crash with dns zone scavenging = yes
bnc#1160850
VUL-0: EMBARGOED: CVE-2019-14902: samba: Replication of ACLs set to inherit down a subtree on AD Directory not automatic
