File _patchinfo of Package patchinfo.13049

<patchinfo incident="13049">
  <issue tracker="bnc" id="1154289">VUL-0: EMBARGOED: CVE-2019-14833: samba: Accent with "check script password"</issue>
  <issue tracker="bnc" id="1130245">L3-Question: Samba vfs object ceph and extended ACLs</issue>
  <issue tracker="bnc" id="1134452">Samba vfs_ceph uses wrong directory for realpath call</issue>
  <issue tracker="bnc" id="1154598">VUL-1: EMBARGOED: CVE-2019-14847: samba: dirsync / ranged_results crash</issue>
  <issue tracker="bnc" id="1144902">VUL-0: EMBARGOED: CVE-2019-10218: samba: Samba servers can inject relative paths in directory entry lists</issue>
  <issue tracker="bnc" id="1125601">shares not visible after patching</issue>
  <issue tracker="bnc" id="1127153">Samba vfs_ceph strict_allocate_ftruncate calls (local FS) ftruncate and fallocate</issue>
  <issue tracker="cve" id="2019-14847"/>
  <issue tracker="cve" id="2019-10218"/>
  <issue tracker="cve" id="2019-14833"/>
  <category>security</category>
  <rating>important</rating>
  <packager>npower</packager>
  <description>This update for samba fixes the following issues:

Security issues fixed:

- CVE-2019-14847: User with "get changes" permission can crash AD DC LDAP server via dirsync (bsc#1154598).
- CVE-2019-10218: Client code can return filenames containing path separators (bsc#1144902).
- CVE-2019-14833: Fixed Accent with "check script password" where the Samba AD DC check password script does not receive the full password (bsc#1154289).

Other issues fixed:

- Fix vfs_ceph realpath (bsc#1134452).
- MacOS credit accounting breaks with async SESSION SETUP (bsc#1125601).
- Mac OS X SMB2 implmenetation sees Input/output error or Resource temporarily unavailable and drops connection
- Explicitly enable libcephfs POSIX ACL support (bsc#1130245).
- Fix vfs_ceph ftruncate and fallocate handling (bsc#1127153).</description>
  <summary>Security update for samba</summary>
</patchinfo>