Overview

File _patchinfo of Package patchinfo.7370

<patchinfo incident="7370">
  <issue id="1050707" tracker="bnc">samba published printers disappear after working for some time</issue>
  <issue id="1058622" tracker="bnc">VUL-0: CVE-2017-12150: samba: Some code path don't enforce smb signing, when they should.</issue>
  <issue id="1058565" tracker="bnc">VUL-0: CVE-2017-12151: samba: Keep required encryption across SMB3 dfs redirects</issue>
  <issue id="1058624" tracker="bnc">VUL-0: CVE-2017-12163: samba: Server memory information leak over SMB1</issue>
  <issue id="2017-12163" tracker="cve" />
  <issue id="2017-12150" tracker="cve" />
  <issue id="2017-12151" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>npower</packager>
  <description>This update for samba fixes several issues.

These security issues were fixed:

- CVE-2017-12163: Prevent client short SMB1 write from writing server memory to
  file, leaking information from the server to the client (bsc#1058624)
- CVE-2017-12150: Always enforce smb signing when it is configured (bsc#1058622)
- CVE-2017-12151: Keep required encryption across SMB3 dfs redirects (bsc#1058565)

The following non-security issue was fixed:

- Fix GUID string format on GetPrinter info request. (bsc#1050707)

This update was imported from the SUSE:SLE-12-SP3:Update update project.</description>
  <summary>Security update for samba</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places