security update for samba
- The Samba Web Administration Tool (SWAT) in Samba versions 3.0.x to 4.0.1
are affected by a cross-site request forgery; CVE-2013-0214; (bnc#799641).
- The Samba Web Administration Tool (SWAT) in Samba versions 3.0.x to 4.0.1
could possibly be used in clickjacking attacks; CVE-2013-0213; (bnc#800982).
- Submitted by Lars Müller (lmuelle)
Fixed bugs
bnc#799641
VUL-0: samba: CVE-2013-0214: Potential XSRF in SWAT
bnc#800982
VUL-0: samba: CVE-2013-0213: Clickjacking issue in SWAT