File _patchinfo of Package patchinfo.5612

<patchinfo incident="5612">
  <issue id="981566" tracker="bnc">Can't find CTDB config file (expecting /etc/sysconfig/ctdb, /etc/default/ctdb or similar)</issue>
  <issue id="991564" tracker="bnc">samba won't stop doing dns updates (even with allow dns updates = disabled)</issue>
  <issue id="986228" tracker="bnc">ntlm_auth segfault when used with --helper-protocol=squid-2.5-ntlmssp</issue>
  <issue id="975131" tracker="bnc">winbindd does not set SO_KEEPALIVE for outgoing connections to port 445</issue>
  <issue id="969522" tracker="bnc">sockets with htons(IPPROTO_RAW) and CVE-2015-8543</issue>
  <issue id="986869" tracker="bnc">Client side SMB2 signing downgrade</issue>
  <issue id="2016-2119" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>jmcdough</packager>
  <description>
This update for samba provides the following fixes:
    
- CVE-2016-2119: Prevent client-side SMB2 signing downgrade. (bsc#986869)
- Fix possible ctdb crash when opening sockets with htons(IPPROTO_RAW). (bsc#969522)
- Honor smb.conf socket options in winbind. (bsc#975131)
- Fix ntlm-auth segmentation fault with squid. (bsc#986228)
- Implement new "--no-dns-updates" option in "net ads" command. (bsc#991564)
- Fix population of ctdb sysconfig after source merge. (bsc#981566)
    
This update was imported from the SUSE:SLE-12-SP1:Update project.
</description>
  <summary>Security update for samba</summary>
</patchinfo>