File _patchinfo of Package patchinfo.13499
<patchinfo incident="13499">
<issue tracker="cve" id="2019-14861"/>
<issue tracker="cve" id="2019-14870"/>
<issue tracker="bnc" id="1158108">VUL-0: EMBARGOED: CVE-2019-14861: samba: DNSServer RPC server crash</issue>
<issue tracker="bnc" id="1158109">VUL-0: EMBARGOED: CVE-2019-14870: samba: DelegationNotAllowed not being enforced</issue>
<packager>npower</packager>
<rating>important</rating>
<category>security</category>
<summary>Security update for samba</summary>
<description>This update for samba fixes the following issues:
- CVE-2019-14861: Fixed a DNSServer RPC server crash, that allowed an authenticated user to crash the DCE/RPC DNS management server by creating records with matching the zone name (bsc#1158108).
- CVE-2019-14870: Fixed a DelegationNotAllowed not being enforced (bsc#1158109).
</description>
</patchinfo>