Security update for samba
This update for samba fixes the following issues:
The following security vulnerability was fixed:
- CVE-2018-10858: Fixed insufficient input validation on client directory
listing in libsmbclient; (bsc#1103411);
The following other change was made:
- s3: winbind: Fix 'winbind normalize names' in wb_getpwsid();
- winbind: honor "winbind use default domain" with empty domain (bsc#1087303)
- winbind: do not modify credentials in NTLM passthru (bsc#1068059)
- net: fix net ads keytab handling (bsc#1067700)
- fix vfs_ceph flock stub
This update was imported from the SUSE:SLE-12-SP3:Update update project.
-
Submitted by
Samuel Cabrero (scabrero)
Fixed bugs
bnc#1103411
VUL-0: EMBARGOED: CVE-2018-10858: samba: Insufficient input validation on client directory listing in libsmbclient
bnc#1087303
L3-Question: winbind: windows domain with one way trust not working
bnc#1068059
winbindd: do not modify credentials in NTLM passthrough (13126)
bnc#1067700
net ads keytab handling not working
