Overview

File _patchinfo of Package patchinfo.8591

<patchinfo incident="8591">
  <issue tracker="bnc" id="1103411">VUL-0: EMBARGOED: CVE-2018-10858: samba: Insufficient input validation on client directory listing in libsmbclient</issue>
  <issue tracker="bnc" id="1087303">L3-Question: winbind: windows domain with one way trust not working</issue>
  <issue tracker="bnc" id="1068059">winbindd: do not modify credentials in NTLM passthrough (13126)</issue>
  <issue tracker="bnc" id="1067700">net ads keytab handling not working</issue>
  <issue tracker="cve" id="2018-10858"/>
  <category>security</category>
  <rating>important</rating>
  <packager>scabrero</packager>
  <description>This update for samba fixes the following issues:

The following security vulnerability was fixed:

- CVE-2018-10858: Fixed insufficient input validation on client directory
  listing in libsmbclient; (bsc#1103411);

The following other change was made:

- s3: winbind: Fix 'winbind normalize names' in wb_getpwsid();
- winbind: honor "winbind use default domain" with empty domain (bsc#1087303)
- winbind: do not modify credentials in NTLM passthru (bsc#1068059)
- net: fix net ads keytab handling (bsc#1067700)
- fix vfs_ceph flock stub

This update was imported from the SUSE:SLE-12-SP3:Update update project.</description>
  <summary>Security update for samba</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places