Overview Repositories Revisions Requests Users Attributes Meta
Security update for samba

This update for samba fixes the following issues:

- CVE-2016-2124: Fixed not to fallback to non spnego authentication if we require kerberos (bsc#1014440).
- CVE-2020-25717: Fixed privilege escalation inside an AD Domain where a user could become root on domain members (bsc#1192284).
- CVE-2021-23192: Fixed dcerpc requests to don't check all fragments against the first auth_state (bsc#1192214).

This update was imported from the SUSE:SLE-15-SP2:Update update project.

Fixed bugs
CVE-2016-2124
CVE-2021-23192
CVE-2020-25717
bnc#1014440
VUL-0: EMBARGOED: CVE-2016-2124: samba: don't fallback to non spnego authentication if we require kerberos
bnc#1192214
VUL-0: EMBARGOED: CVE-2021-23192: samba: dcerpc requests don't check all fragments against the first auth_state
bnc#1192284
VUL-0: EMBARGOED: CVE-2020-25717: samba: A user on the domain can become root on domain members
Selected Binaries
openSUSE Build Service is sponsored by
Places