Security update for samba
This update for samba fixes several issues.
These security issues were fixed:
- CVE-2017-12163: Prevent client short SMB1 write from writing server memory to
file, leaking information from the server to the client (bsc#1058624)
- CVE-2017-12150: Always enforce smb signing when it is configured (bsc#1058622)
- CVE-2017-12151: Keep required encryption across SMB3 dfs redirects (bsc#1058565)
The following non-security issue was fixed:
- Fix GUID string format on GetPrinter info request. (bsc#1050707)
This update was imported from the SUSE:SLE-12-SP3:Update update project.
-
Submitted by
Noel Power (npower)
Fixed bugs
bnc#1050707
samba published printers disappear after working for some time
bnc#1058622
VUL-0: CVE-2017-12150: samba: Some code path don't enforce smb signing, when they should.
bnc#1058565
VUL-0: CVE-2017-12151: samba: Keep required encryption across SMB3 dfs redirects
bnc#1058624
VUL-0: CVE-2017-12163: samba: Server memory information leak over SMB1
