ctdb-4.5.0-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10069-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z ctdb-4.5.0-1.1 on GA media These are all security issues fixed in the ctdb-4.5.0-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10069 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2009-1886/ SUSE CVE CVE-2009-1886 page https://www.suse.com/security/cve/CVE-2009-1888/ SUSE CVE CVE-2009-1888 page https://www.suse.com/security/cve/CVE-2009-2813/ SUSE CVE CVE-2009-2813 page https://www.suse.com/security/cve/CVE-2009-2906/ SUSE CVE CVE-2009-2906 page https://www.suse.com/security/cve/CVE-2009-2948/ SUSE CVE CVE-2009-2948 page https://www.suse.com/security/cve/CVE-2010-0547/ SUSE CVE CVE-2010-0547 page https://www.suse.com/security/cve/CVE-2010-0728/ SUSE CVE CVE-2010-0728 page https://www.suse.com/security/cve/CVE-2010-0787/ SUSE CVE CVE-2010-0787 page https://www.suse.com/security/cve/CVE-2010-0926/ SUSE CVE CVE-2010-0926 page https://www.suse.com/security/cve/CVE-2010-1635/ SUSE CVE CVE-2010-1635 page https://www.suse.com/security/cve/CVE-2010-1642/ SUSE CVE CVE-2010-1642 page https://www.suse.com/security/cve/CVE-2010-2063/ SUSE CVE CVE-2010-2063 page https://www.suse.com/security/cve/CVE-2010-3069/ SUSE CVE CVE-2010-3069 page https://www.suse.com/security/cve/CVE-2011-0719/ SUSE CVE CVE-2011-0719 page https://www.suse.com/security/cve/CVE-2011-2522/ SUSE CVE CVE-2011-2522 page https://www.suse.com/security/cve/CVE-2011-2694/ SUSE CVE CVE-2011-2694 page https://www.suse.com/security/cve/CVE-2012-0817/ SUSE CVE CVE-2012-0817 page https://www.suse.com/security/cve/CVE-2012-0870/ SUSE CVE CVE-2012-0870 page https://www.suse.com/security/cve/CVE-2012-1182/ SUSE CVE CVE-2012-1182 page https://www.suse.com/security/cve/CVE-2012-2111/ SUSE CVE CVE-2012-2111 page https://www.suse.com/security/cve/CVE-2012-6150/ SUSE CVE CVE-2012-6150 page https://www.suse.com/security/cve/CVE-2013-0172/ SUSE CVE CVE-2013-0172 page https://www.suse.com/security/cve/CVE-2013-0213/ SUSE CVE CVE-2013-0213 page https://www.suse.com/security/cve/CVE-2013-0214/ SUSE CVE CVE-2013-0214 page https://www.suse.com/security/cve/CVE-2013-0454/ SUSE CVE CVE-2013-0454 page https://www.suse.com/security/cve/CVE-2013-1863/ SUSE CVE CVE-2013-1863 page https://www.suse.com/security/cve/CVE-2013-4124/ SUSE CVE CVE-2013-4124 page https://www.suse.com/security/cve/CVE-2013-4408/ SUSE CVE CVE-2013-4408 page https://www.suse.com/security/cve/CVE-2013-4475/ SUSE CVE CVE-2013-4475 page https://www.suse.com/security/cve/CVE-2013-4476/ SUSE CVE CVE-2013-4476 page https://www.suse.com/security/cve/CVE-2013-4496/ SUSE CVE CVE-2013-4496 page https://www.suse.com/security/cve/CVE-2013-6442/ SUSE CVE CVE-2013-6442 page https://www.suse.com/security/cve/CVE-2014-0178/ SUSE CVE CVE-2014-0178 page https://www.suse.com/security/cve/CVE-2014-0239/ SUSE CVE CVE-2014-0239 page https://www.suse.com/security/cve/CVE-2014-0244/ SUSE CVE CVE-2014-0244 page https://www.suse.com/security/cve/CVE-2014-3493/ SUSE CVE CVE-2014-3493 page https://www.suse.com/security/cve/CVE-2014-3560/ SUSE CVE CVE-2014-3560 page https://www.suse.com/security/cve/CVE-2014-8143/ SUSE CVE CVE-2014-8143 page https://www.suse.com/security/cve/CVE-2015-0240/ SUSE CVE CVE-2015-0240 page https://www.suse.com/security/cve/CVE-2015-3223/ SUSE CVE CVE-2015-3223 page https://www.suse.com/security/cve/CVE-2015-5252/ SUSE CVE CVE-2015-5252 page https://www.suse.com/security/cve/CVE-2015-5296/ SUSE CVE CVE-2015-5296 page https://www.suse.com/security/cve/CVE-2015-5299/ SUSE CVE CVE-2015-5299 page https://www.suse.com/security/cve/CVE-2015-5330/ SUSE CVE CVE-2015-5330 page https://www.suse.com/security/cve/CVE-2015-5370/ SUSE CVE CVE-2015-5370 page https://www.suse.com/security/cve/CVE-2015-7560/ SUSE CVE CVE-2015-7560 page https://www.suse.com/security/cve/CVE-2015-8467/ SUSE CVE CVE-2015-8467 page https://www.suse.com/security/cve/CVE-2015-8543/ SUSE CVE CVE-2015-8543 page https://www.suse.com/security/cve/CVE-2016-0771/ SUSE CVE CVE-2016-0771 page https://www.suse.com/security/cve/CVE-2016-2110/ SUSE CVE CVE-2016-2110 page https://www.suse.com/security/cve/CVE-2016-2111/ SUSE CVE CVE-2016-2111 page https://www.suse.com/security/cve/CVE-2016-2112/ SUSE CVE CVE-2016-2112 page https://www.suse.com/security/cve/CVE-2016-2113/ SUSE CVE CVE-2016-2113 page https://www.suse.com/security/cve/CVE-2016-2115/ SUSE CVE CVE-2016-2115 page https://www.suse.com/security/cve/CVE-2016-2118/ SUSE CVE CVE-2016-2118 page https://www.suse.com/security/cve/CVE-2016-2119/ SUSE CVE CVE-2016-2119 page openSUSE Tumbleweed ctdb-4.5.0-1.1 ctdb-pcp-pmda-4.5.0-1.1 ctdb-tests-4.5.0-1.1 libdcerpc-binding0-4.5.0-1.1 libdcerpc-binding0-32bit-4.5.0-1.1 libdcerpc-devel-4.5.0-1.1 libdcerpc-samr-devel-4.5.0-1.1 libdcerpc-samr0-4.5.0-1.1 libdcerpc-samr0-32bit-4.5.0-1.1 libdcerpc0-4.5.0-1.1 libdcerpc0-32bit-4.5.0-1.1 libndr-devel-4.5.0-1.1 libndr-krb5pac-devel-4.5.0-1.1 libndr-krb5pac0-4.5.0-1.1 libndr-krb5pac0-32bit-4.5.0-1.1 libndr-nbt-devel-4.5.0-1.1 libndr-nbt0-4.5.0-1.1 libndr-nbt0-32bit-4.5.0-1.1 libndr-standard-devel-4.5.0-1.1 libndr-standard0-4.5.0-1.1 libndr-standard0-32bit-4.5.0-1.1 libndr0-4.5.0-1.1 libndr0-32bit-4.5.0-1.1 libnetapi-devel-4.5.0-1.1 libnetapi0-4.5.0-1.1 libnetapi0-32bit-4.5.0-1.1 libsamba-credentials-devel-4.5.0-1.1 libsamba-credentials0-4.5.0-1.1 libsamba-credentials0-32bit-4.5.0-1.1 libsamba-errors-devel-4.5.0-1.1 libsamba-errors0-4.5.0-1.1 libsamba-errors0-32bit-4.5.0-1.1 libsamba-hostconfig-devel-4.5.0-1.1 libsamba-hostconfig0-4.5.0-1.1 libsamba-hostconfig0-32bit-4.5.0-1.1 libsamba-passdb-devel-4.5.0-1.1 libsamba-passdb0-4.5.0-1.1 libsamba-passdb0-32bit-4.5.0-1.1 libsamba-policy-devel-4.5.0-1.1 libsamba-policy0-4.5.0-1.1 libsamba-policy0-32bit-4.5.0-1.1 libsamba-util-devel-4.5.0-1.1 libsamba-util0-4.5.0-1.1 libsamba-util0-32bit-4.5.0-1.1 libsamdb-devel-4.5.0-1.1 libsamdb0-4.5.0-1.1 libsamdb0-32bit-4.5.0-1.1 libsmbclient-devel-4.5.0-1.1 libsmbclient0-4.5.0-1.1 libsmbclient0-32bit-4.5.0-1.1 libsmbconf-devel-4.5.0-1.1 libsmbconf0-4.5.0-1.1 libsmbconf0-32bit-4.5.0-1.1 libsmbldap-devel-4.5.0-1.1 libsmbldap0-4.5.0-1.1 libsmbldap0-32bit-4.5.0-1.1 libtevent-util-devel-4.5.0-1.1 libtevent-util0-4.5.0-1.1 libtevent-util0-32bit-4.5.0-1.1 libwbclient-devel-4.5.0-1.1 libwbclient0-4.5.0-1.1 libwbclient0-32bit-4.5.0-1.1 samba-4.5.0-1.1 samba-ceph-4.5.0-1.1 samba-client-4.5.0-1.1 samba-client-32bit-4.5.0-1.1 samba-core-devel-4.5.0-1.1 samba-doc-4.5.0-1.1 samba-libs-4.5.0-1.1 samba-libs-32bit-4.5.0-1.1 samba-pidl-4.5.0-1.1 samba-python-4.5.0-1.1 samba-test-4.5.0-1.1 samba-winbind-4.5.0-1.1 samba-winbind-32bit-4.5.0-1.1 ctdb-4.5.0-1.1 as a component of openSUSE Tumbleweed ctdb-pcp-pmda-4.5.0-1.1 as a component of openSUSE Tumbleweed ctdb-tests-4.5.0-1.1 as a component of openSUSE Tumbleweed libdcerpc-binding0-4.5.0-1.1 as a component of openSUSE Tumbleweed libdcerpc-binding0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libdcerpc-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libdcerpc-samr-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libdcerpc-samr0-4.5.0-1.1 as a component of openSUSE Tumbleweed libdcerpc-samr0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libdcerpc0-4.5.0-1.1 as a component of openSUSE Tumbleweed libdcerpc0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libndr-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libndr-krb5pac-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libndr-krb5pac0-4.5.0-1.1 as a component of openSUSE Tumbleweed libndr-krb5pac0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libndr-nbt-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libndr-nbt0-4.5.0-1.1 as a component of openSUSE Tumbleweed libndr-nbt0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libndr-standard-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libndr-standard0-4.5.0-1.1 as a component of openSUSE Tumbleweed libndr-standard0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libndr0-4.5.0-1.1 as a component of openSUSE Tumbleweed libndr0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libnetapi-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libnetapi0-4.5.0-1.1 as a component of openSUSE Tumbleweed libnetapi0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-credentials-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-credentials0-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-credentials0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-errors-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-errors0-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-errors0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-hostconfig-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-hostconfig0-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-hostconfig0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-passdb-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-passdb0-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-passdb0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-policy-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-policy0-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-policy0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-util-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-util0-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamba-util0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamdb-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamdb0-4.5.0-1.1 as a component of openSUSE Tumbleweed libsamdb0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libsmbclient-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libsmbclient0-4.5.0-1.1 as a component of openSUSE Tumbleweed libsmbclient0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libsmbconf-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libsmbconf0-4.5.0-1.1 as a component of openSUSE Tumbleweed libsmbconf0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libsmbldap-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libsmbldap0-4.5.0-1.1 as a component of openSUSE Tumbleweed libsmbldap0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libtevent-util-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libtevent-util0-4.5.0-1.1 as a component of openSUSE Tumbleweed libtevent-util0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed libwbclient-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed libwbclient0-4.5.0-1.1 as a component of openSUSE Tumbleweed libwbclient0-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed samba-4.5.0-1.1 as a component of openSUSE Tumbleweed samba-ceph-4.5.0-1.1 as a component of openSUSE Tumbleweed samba-client-4.5.0-1.1 as a component of openSUSE Tumbleweed samba-client-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed samba-core-devel-4.5.0-1.1 as a component of openSUSE Tumbleweed samba-doc-4.5.0-1.1 as a component of openSUSE Tumbleweed samba-libs-4.5.0-1.1 as a component of openSUSE Tumbleweed samba-libs-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed samba-pidl-4.5.0-1.1 as a component of openSUSE Tumbleweed samba-python-4.5.0-1.1 as a component of openSUSE Tumbleweed samba-test-4.5.0-1.1 as a component of openSUSE Tumbleweed samba-winbind-4.5.0-1.1 as a component of openSUSE Tumbleweed samba-winbind-32bit-4.5.0-1.1 as a component of openSUSE Tumbleweed Multiple format string vulnerabilities in client/client.c in smbclient in Samba 3.2.0 through 3.2.12 might allow context-dependent attackers to execute arbitrary code via format string specifiers in a filename. CVE-2009-1886 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-1886.html CVE-2009-1886 https://bugzilla.suse.com/513360 SUSE Bug 513360 https://bugzilla.suse.com/515479 SUSE Bug 515479 The acl_group_override function in smbd/posix_acls.c in smbd in Samba 3.0.x before 3.0.35, 3.1.x and 3.2.x before 3.2.13, and 3.3.x before 3.3.6, when dos filemode is enabled, allows remote attackers to modify access control lists for files via vectors related to read access to uninitialized memory. CVE-2009-1888 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 5.8 AV:N/AC:M/Au:N/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-1888.html CVE-2009-1888 https://bugzilla.suse.com/513360 SUSE Bug 513360 https://bugzilla.suse.com/515479 SUSE Bug 515479 Samba 3.4 before 3.4.2, 3.3 before 3.3.8, 3.2 before 3.2.15, and 3.0.12 through 3.0.36, as used in the SMB subsystem in Apple Mac OS X 10.5.8 when Windows File Sharing is enabled, Fedora 11, and other operating systems, does not properly handle errors in resolving pathnames, which allows remote authenticated users to bypass intended sharing restrictions, and read, create, or modify files, in certain circumstances involving user accounts that lack home directories. CVE-2009-2813 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 6 AV:N/AC:M/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-2813.html CVE-2009-2813 https://bugzilla.suse.com/515479 SUSE Bug 515479 https://bugzilla.suse.com/539517 SUSE Bug 539517 https://bugzilla.suse.com/543115 SUSE Bug 543115 smbd in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8, and 3.4 before 3.4.2 allows remote authenticated users to cause a denial of service (infinite loop) via an unanticipated oplock break notification reply packet. CVE-2009-2906 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-2906.html CVE-2009-2906 https://bugzilla.suse.com/515479 SUSE Bug 515479 https://bugzilla.suse.com/543115 SUSE Bug 543115 mount.cifs in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8 and 3.4 before 3.4.2, when mount.cifs is installed suid root, does not properly enforce permissions, which allows local users to read part of the credentials file and obtain the password by specifying the path to the credentials file and using the --verbose or -v option. CVE-2009-2948 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 1.9 AV:L/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-2948.html CVE-2009-2948 https://bugzilla.suse.com/515479 SUSE Bug 515479 https://bugzilla.suse.com/542150 SUSE Bug 542150 https://bugzilla.suse.com/543115 SUSE Bug 543115 client/mount.cifs.c in mount.cifs in smbfs in Samba 3.4.5 and earlier does not verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which allows local users to cause a denial of service (mtab corruption) via a crafted string. CVE-2010-0547 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-0547.html CVE-2010-0547 https://bugzilla.suse.com/577868 SUSE Bug 577868 https://bugzilla.suse.com/577925 SUSE Bug 577925 https://bugzilla.suse.com/583535 SUSE Bug 583535 https://bugzilla.suse.com/583536 SUSE Bug 583536 https://bugzilla.suse.com/594263 SUSE Bug 594263 https://bugzilla.suse.com/597421 SUSE Bug 597421 https://bugzilla.suse.com/602694 SUSE Bug 602694 https://bugzilla.suse.com/709819 SUSE Bug 709819 smbd in Samba 3.3.11, 3.4.6, and 3.5.0, when libcap support is enabled, runs with the CAP_DAC_OVERRIDE capability, which allows remote authenticated users to bypass intended file permissions via standard filesystem operations with any client. CVE-2010-0728 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-0728.html CVE-2010-0728 https://bugzilla.suse.com/586683 SUSE Bug 586683 client/mount.cifs.c in mount.cifs in smbfs in Samba 3.0.22, 3.0.28a, 3.2.3, 3.3.2, 3.4.0, and 3.4.5 allows local users to mount a CIFS share on an arbitrary mountpoint, and gain privileges, via a symlink attack on the mountpoint directory file. CVE-2010-0787 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-0787.html CVE-2010-0787 https://bugzilla.suse.com/550002 SUSE Bug 550002 https://bugzilla.suse.com/602694 SUSE Bug 602694 https://bugzilla.suse.com/620680 SUSE Bug 620680 The default configuration of smbd in Samba before 3.3.11, 3.4.x before 3.4.6, and 3.5.x before 3.5.0rc3, when a writable share exists, allows remote authenticated users to leverage a directory traversal vulnerability, and access arbitrary files, by using the symlink command in smbclient to create a symlink containing .. (dot dot) sequences, related to the combination of the unix extensions and wide links options. CVE-2010-0926 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 3.5 AV:N/AC:M/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-0926.html CVE-2010-0926 https://bugzilla.suse.com/1027147 SUSE Bug 1027147 https://bugzilla.suse.com/577868 SUSE Bug 577868 https://bugzilla.suse.com/597421 SUSE Bug 597421 The chain_reply function in process.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to cause a denial of service (NULL pointer dereference and process crash) via a Negotiate Protocol request with a certain 0x0003 field value followed by a Session Setup AndX request with a certain 0x8003 field value. CVE-2010-1635 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-1635.html CVE-2010-1635 https://bugzilla.suse.com/605935 SUSE Bug 605935 The reply_sesssetup_and_X_spnego function in sesssetup.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to trigger an out-of-bounds read, and cause a denial of service (process crash), via a \xff\xff security blob length in a Session Setup AndX request. CVE-2010-1642 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-1642.html CVE-2010-1642 https://bugzilla.suse.com/605935 SUSE Bug 605935 Buffer overflow in the SMB1 packet chaining implementation in the chain_reply function in process.c in smbd in Samba 3.0.x before 3.3.13 allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a crafted field in a packet. CVE-2010-2063 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-2063.html CVE-2010-2063 https://bugzilla.suse.com/611927 SUSE Bug 611927 Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3.5.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Windows Security ID (SID) on a file share. CVE-2010-3069 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-3069.html CVE-2010-3069 https://bugzilla.suse.com/637218 SUSE Bug 637218 Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 3.5.7 does not perform range checks for file descriptors before use of the FD_SET macro, which allows remote attackers to cause a denial of service (stack memory corruption, and infinite loop or daemon crash) by opening a large number of files, related to (1) Winbind or (2) smbd. CVE-2011-0719 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-0719.html CVE-2011-0719 https://bugzilla.suse.com/670431 SUSE Bug 670431 Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allow remote attackers to hijack the authentication of administrators for requests that (1) shut down daemons, (2) start daemons, (3) add shares, (4) remove shares, (5) add printers, (6) remove printers, (7) add user accounts, or (8) remove user accounts, as demonstrated by certain start, stop, and restart parameters to the status program. CVE-2011-2522 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-2522.html CVE-2011-2522 https://bugzilla.suse.com/705241 SUSE Bug 705241 Cross-site scripting (XSS) vulnerability in the chg_passwd function in web/swat.c in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allows remote authenticated administrators to inject arbitrary web script or HTML via the username parameter to the passwd program (aka the user field to the Change Password page). CVE-2011-2694 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 2.6 AV:N/AC:H/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-2694.html CVE-2011-2694 Memory leak in smbd in Samba 3.6.x before 3.6.3 allows remote attackers to cause a denial of service (memory and CPU consumption) by making many connection requests. CVE-2012-0817 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-0817.html CVE-2012-0817 https://bugzilla.suse.com/743986 SUSE Bug 743986 Heap-based buffer overflow in process.c in smbd in Samba 3.0, as used in the file-sharing service on the BlackBerry PlayBook tablet before 2.0.0.7971 and other products, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a Batched (aka AndX) request that triggers infinite recursion. CVE-2012-0870 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 7.9 AV:A/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-0870.html CVE-2012-0870 https://bugzilla.suse.com/747934 SUSE Bug 747934 https://bugzilla.suse.com/752797 SUSE Bug 752797 The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call. CVE-2012-1182 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 10 AV:N/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-1182.html CVE-2012-1182 https://bugzilla.suse.com/747934 SUSE Bug 747934 https://bugzilla.suse.com/752797 SUSE Bug 752797 https://bugzilla.suse.com/754443 SUSE Bug 754443 The (1) CreateAccount, (2) OpenAccount, (3) AddAccountRights, and (4) RemoveAccountRights LSA RPC procedures in smbd in Samba 3.4.x before 3.4.17, 3.5.x before 3.5.15, and 3.6.x before 3.6.5 do not properly restrict modifications to the privileges database, which allows remote authenticated users to obtain the "take ownership" privilege via an LSA connection. CVE-2012-2111 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-2111.html CVE-2012-2111 https://bugzilla.suse.com/754443 SUSE Bug 754443 https://bugzilla.suse.com/757576 SUSE Bug 757576 The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1.2 handles invalid require_membership_of group names by accepting authentication by any user, which allows remote authenticated users to bypass intended access restrictions in opportunistic circumstances by leveraging an administrator's pam_winbind configuration-file mistake. CVE-2012-6150 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 low 3.6 AV:N/AC:H/Au:S/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-6150.html CVE-2012-6150 https://bugzilla.suse.com/844720 SUSE Bug 844720 https://bugzilla.suse.com/853347 SUSE Bug 853347 Samba 4.0.x before 4.0.1, in certain Active Directory domain-controller configurations, does not properly interpret Access Control Entries that are based on an objectClass, which allows remote authenticated users to bypass intended restrictions on modifying LDAP directory objects by leveraging (1) objectClass access by a user, (2) objectClass access by a group, or (3) write access to an attribute. CVE-2013-0172 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 3.5 AV:N/AC:M/Au:S/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-0172.html CVE-2013-0172 https://bugzilla.suse.com/798364 SUSE Bug 798364 The Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.21, 3.6.x before 3.6.12, and 4.x before 4.0.2 allows remote attackers to conduct clickjacking attacks via a (1) FRAME or (2) IFRAME element. CVE-2013-0213 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-0213.html CVE-2013-0213 https://bugzilla.suse.com/799641 SUSE Bug 799641 https://bugzilla.suse.com/800982 SUSE Bug 800982 https://bugzilla.suse.com/880220 SUSE Bug 880220 Cross-site request forgery (CSRF) vulnerability in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.21, 3.6.x before 3.6.12, and 4.x before 4.0.2 allows remote attackers to hijack the authentication of arbitrary users by leveraging knowledge of a password and composing requests that perform SWAT actions. CVE-2013-0214 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-0214.html CVE-2013-0214 https://bugzilla.suse.com/799641 SUSE Bug 799641 https://bugzilla.suse.com/880220 SUSE Bug 880220 The SMB2 implementation in Samba 3.6.x before 3.6.6, as used on the IBM Storwize V7000 Unified 1.3 before 1.3.2.3 and 1.4 before 1.4.0.1 and possibly other products, does not properly enforce CIFS share attributes, which allows remote authenticated users to (1) write to a read-only share; (2) trigger data-integrity problems related to the oplock, locking, coherency, or leases attribute; or (3) have an unspecified impact by leveraging incorrect handling of the browseable or "hide unreadable" parameter. CVE-2013-0454 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 4 AV:N/AC:L/Au:S/C:N/I:P/A:N 4 AV:N/AC:L/Au:S/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-0454.html CVE-2013-0454 https://bugzilla.suse.com/811975 SUSE Bug 811975 Samba 4.x before 4.0.4, when configured as an Active Directory domain controller, uses world-writable permissions on non-default CIFS shares, which allows remote authenticated users to read, modify, create, or delete arbitrary files via standard filesystem operations. CVE-2013-1863 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 6 AV:N/AC:M/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-1863.html CVE-2013-1863 https://bugzilla.suse.com/809624 SUSE Bug 809624 Integer overflow in the read_nttrans_ea_list function in nttrans.c in smbd in Samba 3.x before 3.5.22, 3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service (memory consumption) via a malformed packet. CVE-2013-4124 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-4124.html CVE-2013-4124 https://bugzilla.suse.com/829969 SUSE Bug 829969 Heap-based buffer overflow in the dcerpc_read_ncacn_packet_done function in librpc/rpc/dcerpc_util.c in winbindd in Samba 3.x before 3.6.22, 4.0.x before 4.0.13, and 4.1.x before 4.1.3 allows remote AD domain controllers to execute arbitrary code via an invalid fragment length in a DCE-RPC packet. CVE-2013-4408 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 important 6.8 AV:A/AC:H/Au:N/C:C/I:C/A:C 8.3 AV:A/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-4408.html CVE-2013-4408 https://bugzilla.suse.com/844720 SUSE Bug 844720 https://bugzilla.suse.com/848101 SUSE Bug 848101 https://bugzilla.suse.com/882906 SUSE Bug 882906 Samba 3.2.x through 3.6.x before 3.6.20, 4.0.x before 4.0.11, and 4.1.x before 4.1.1, when vfs_streams_depot or vfs_streams_xattr is enabled, allows remote attackers to bypass intended file restrictions by leveraging ACL differences between a file and an associated alternate data stream (ADS). CVE-2013-4475 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 4 AV:N/AC:H/Au:N/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-4475.html CVE-2013-4475 https://bugzilla.suse.com/848101 SUSE Bug 848101 https://bugzilla.suse.com/880220 SUSE Bug 880220 Samba 4.0.x before 4.0.11 and 4.1.x before 4.1.1, when LDAP or HTTP is provided over SSL, uses world-readable permissions for a private key, which allows local users to obtain sensitive information by reading the key file, as demonstrated by access to the local filesystem on an AD domain controller. CVE-2013-4476 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 1.2 AV:L/AC:H/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-4476.html CVE-2013-4476 https://bugzilla.suse.com/848103 SUSE Bug 848103 Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obtain access via brute-force ChangePasswordUser2 (1) SAMR or (2) RAP attempts. CVE-2013-4496 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-4496.html CVE-2013-4496 https://bugzilla.suse.com/849224 SUSE Bug 849224 https://bugzilla.suse.com/866844 SUSE Bug 866844 The owner_set function in smbcacls.c in smbcacls in Samba 4.0.x before 4.0.16 and 4.1.x before 4.1.6 removes an ACL during use of a --chown or --chgrp option, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging an unintended administrative change. CVE-2013-6442 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 5.8 AV:N/AC:M/Au:N/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-6442.html CVE-2013-6442 https://bugzilla.suse.com/855866 SUSE Bug 855866 Samba 3.6.6 through 3.6.23, 4.0.x before 4.0.18, and 4.1.x before 4.1.8, when a certain vfs shadow copy configuration is enabled, does not properly initialize the SRV_SNAPSHOT_ARRAY response field, which allows remote authenticated users to obtain potentially sensitive information from process memory via a (1) FSCTL_GET_SHADOW_COPY_DATA or (2) FSCTL_SRV_ENUMERATE_SNAPSHOTS request. CVE-2014-0178 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 low 3.5 AV:N/AC:M/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0178.html CVE-2014-0178 https://bugzilla.suse.com/872396 SUSE Bug 872396 The internal DNS server in Samba 4.x before 4.0.18 does not check the QR field in the header section of an incoming DNS message before sending a response, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged response packet that triggers a communication loop, a related issue to CVE-1999-0103. CVE-2014-0239 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0239.html CVE-2014-0239 https://bugzilla.suse.com/878642 SUSE Bug 878642 The sys_recvfrom function in nmbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x before 4.1.9 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed UDP packet. CVE-2014-0244 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 low 3.3 AV:A/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0244.html CVE-2014-0244 https://bugzilla.suse.com/880962 SUSE Bug 880962 https://bugzilla.suse.com/883758 SUSE Bug 883758 The push_ascii function in smbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x before 4.1.9 allows remote authenticated users to cause a denial of service (memory corruption and daemon crash) via an attempt to read a Unicode pathname without specifying use of Unicode, leading to a character-set conversion failure that triggers an invalid pointer dereference. CVE-2014-3493 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 low 2.7 AV:A/AC:L/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3493.html CVE-2014-3493 https://bugzilla.suse.com/878642 SUSE Bug 878642 https://bugzilla.suse.com/880962 SUSE Bug 880962 https://bugzilla.suse.com/883758 SUSE Bug 883758 NetBIOS name services daemon (nmbd) in Samba 4.0.x before 4.0.21 and 4.1.x before 4.1.11 allows remote attackers to execute arbitrary code via unspecified vectors that modify heap memory, involving a sizeof operation on an incorrect variable in the unstrcpy macro in string_wrappers.h. CVE-2014-3560 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 7.9 AV:A/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3560.html CVE-2014-3560 https://bugzilla.suse.com/889429 SUSE Bug 889429 Samba 4.0.x before 4.0.24, 4.1.x before 4.1.16, and 4.2.x before 4.2rc4, when an Active Directory Domain Controller (AD DC) is configured, allows remote authenticated users to set the LDB userAccountControl UF_SERVER_TRUST_ACCOUNT bit, and consequently gain privileges, by leveraging delegation of authority for user-account or computer-account creation. CVE-2014-8143 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-8143.html CVE-2014-8143 https://bugzilla.suse.com/914279 SUSE Bug 914279 The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25, 4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized stack pointer, which allows remote attackers to execute arbitrary code via crafted Netlogon packets that use the ServerPasswordSet RPC API, as demonstrated by packets reaching the _netr_ServerPasswordSet function in rpc_server/netlogon/srv_netlog_nt.c. CVE-2015-0240 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 critical 10 AV:N/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-0240.html CVE-2015-0240 https://bugzilla.suse.com/917376 SUSE Bug 917376 The ldb_wildcard_compare function in ldb_match.c in ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles certain zero values, which allows remote attackers to cause a denial of service (infinite loop) via crafted packets. CVE-2015-3223 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 important 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3223.html CVE-2015-3223 https://bugzilla.suse.com/958581 SUSE Bug 958581 vfs.c in smbd in Samba 3.x and 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, when share names with certain substring relationships exist, allows remote attackers to bypass intended file-access restrictions via a symlink that points outside of a share. CVE-2015-5252 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 6.8 AV:N/AC:L/Au:S/C:C/I:N/A:N 5 AV:N/AC:L/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5252.html CVE-2015-5252 https://bugzilla.suse.com/958582 SUSE Bug 958582 Samba 3.x and 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3 supports connections that are encrypted but unsigned, which allows man-in-the-middle attackers to conduct encrypted-to-unencrypted downgrade attacks by modifying the client-server data stream, related to clidfs.c, libsmb_server.c, and smbXcli_base.c. CVE-2015-5296 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 3.2 AV:A/AC:H/Au:N/C:P/I:P/A:N 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5296.html CVE-2015-5296 https://bugzilla.suse.com/1058622 SUSE Bug 1058622 https://bugzilla.suse.com/958584 SUSE Bug 958584 https://bugzilla.suse.com/973031 SUSE Bug 973031 The shadow_copy2_get_shadow_copy_data function in modules/vfs_shadow_copy2.c in Samba 3.x and 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3 does not verify that the DIRECTORY_LIST access right has been granted, which allows remote attackers to access snapshots by visiting a shadow copy directory. CVE-2015-5299 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 low 3.5 AV:N/AC:M/Au:S/C:P/I:N/A:N 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5299.html CVE-2015-5299 https://bugzilla.suse.com/958583 SUSE Bug 958583 ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles string lengths, which allows remote attackers to obtain sensitive information from daemon heap memory by sending crafted packets and then reading (1) an error message or (2) a database value. CVE-2015-5330 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 low 4 AV:N/AC:L/Au:S/C:P/I:N/A:N 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5330.html CVE-2015-5330 https://bugzilla.suse.com/958581 SUSE Bug 958581 https://bugzilla.suse.com/958586 SUSE Bug 958586 Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not properly implement the DCE-RPC layer, which allows remote attackers to perform protocol-downgrade attacks, cause a denial of service (application crash or CPU consumption), or possibly execute arbitrary code on a client system via unspecified vectors. CVE-2015-5370 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 important 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5370.html CVE-2015-5370 https://bugzilla.suse.com/936862 SUSE Bug 936862 https://bugzilla.suse.com/975276 SUSE Bug 975276 https://bugzilla.suse.com/977416 SUSE Bug 977416 The SMB1 implementation in smbd in Samba 3.x and 4.x before 4.1.23, 4.2.x before 4.2.9, 4.3.x before 4.3.6, and 4.4.x before 4.4.0rc4 allows remote authenticated users to modify arbitrary ACLs by using a UNIX SMB1 call to create a symlink, and then using a non-UNIX SMB1 call to write to the ACL content. CVE-2015-7560 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 4.9 AV:A/AC:M/Au:S/C:P/I:P/A:P 4 AV:N/AC:L/Au:S/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-7560.html CVE-2015-7560 https://bugzilla.suse.com/968222 SUSE Bug 968222 The samldb_check_user_account_control_acl function in dsdb/samdb/ldb_modules/samldb.c in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3 does not properly check for administrative privileges during creation of machine accounts, which allows remote authenticated users to bypass intended access restrictions by leveraging the existence of a domain with both a Samba DC and a Windows DC, a similar issue to CVE-2015-2535. CVE-2015-8467 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 important 6 AV:N/AC:M/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-8467.html CVE-2015-8467 https://bugzilla.suse.com/958585 SUSE Bug 958585 The networking implementation in the Linux kernel through 4.3.3, as used in Android and other products, does not validate protocol identifiers for certain protocol families, which allows local users to cause a denial of service (NULL function pointer dereference and system crash) or possibly gain privileges by leveraging CLONE_NEWUSER support to execute a crafted SOCK_RAW application. CVE-2015-8543 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 1.7 AV:L/AC:L/Au:S/C:N/I:N/A:P 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-8543.html CVE-2015-8543 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/1052256 SUSE Bug 1052256 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 https://bugzilla.suse.com/923755 SUSE Bug 923755 https://bugzilla.suse.com/958886 SUSE Bug 958886 https://bugzilla.suse.com/963994 SUSE Bug 963994 https://bugzilla.suse.com/969522 SUSE Bug 969522 The internal DNS server in Samba 4.x before 4.1.23, 4.2.x before 4.2.9, 4.3.x before 4.3.6, and 4.4.x before 4.4.0rc4, when an AD DC is configured, allows remote authenticated users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from process memory by uploading a crafted DNS TXT record. CVE-2016-0771 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 4.9 AV:N/AC:M/Au:S/C:P/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0771.html CVE-2016-0771 https://bugzilla.suse.com/968223 SUSE Bug 968223 The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 allows man-in-the-middle attackers to perform protocol-downgrade attacks by modifying the client-server data stream to remove application-layer flags or encryption settings, as demonstrated by clearing the NTLMSSP_NEGOTIATE_SEAL or NTLMSSP_NEGOTIATE_SIGN option to disrupt LDAP security. CVE-2016-2110 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 5.8 AV:N/AC:M/Au:N/C:P/I:P/A:N 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2110.html CVE-2016-2110 https://bugzilla.suse.com/1009711 SUSE Bug 1009711 https://bugzilla.suse.com/973031 SUSE Bug 973031 https://bugzilla.suse.com/973033 SUSE Bug 973033 https://bugzilla.suse.com/973036 SUSE Bug 973036 https://bugzilla.suse.com/975276 SUSE Bug 975276 https://bugzilla.suse.com/977416 SUSE Bug 977416 The NETLOGON service in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2, when a domain controller is configured, allows remote attackers to spoof the computer name of a secure channel's endpoint, and obtain sensitive session information, by running a crafted application and leveraging the ability to sniff network traffic, a related issue to CVE-2015-0005. CVE-2016-2111 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N 4.3 AV:A/AC:M/Au:N/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2111.html CVE-2016-2111 https://bugzilla.suse.com/973032 SUSE Bug 973032 https://bugzilla.suse.com/975276 SUSE Bug 975276 https://bugzilla.suse.com/977416 SUSE Bug 977416 The bundled LDAP client library in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "client ldap sasl wrapping" setting, which allows man-in-the-middle attackers to perform LDAP protocol-downgrade attacks by modifying the client-server data stream. CVE-2016-2112 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 4.3 AV:A/AC:M/Au:N/C:P/I:P/A:N 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2112.html CVE-2016-2112 https://bugzilla.suse.com/973031 SUSE Bug 973031 https://bugzilla.suse.com/973033 SUSE Bug 973033 https://bugzilla.suse.com/975276 SUSE Bug 975276 https://bugzilla.suse.com/977416 SUSE Bug 977416 Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof LDAPS and HTTPS servers and obtain sensitive information via a crafted certificate. CVE-2016-2113 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 4.3 AV:A/AC:M/Au:N/C:P/I:P/A:N 5.8 AV:N/AC:M/Au:N/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2113.html CVE-2016-2113 https://bugzilla.suse.com/973031 SUSE Bug 973031 https://bugzilla.suse.com/973033 SUSE Bug 973033 https://bugzilla.suse.com/973034 SUSE Bug 973034 https://bugzilla.suse.com/975276 SUSE Bug 975276 https://bugzilla.suse.com/977416 SUSE Bug 977416 Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not require SMB signing within a DCERPC session over ncacn_np, which allows man-in-the-middle attackers to spoof SMB clients by modifying the client-server data stream. CVE-2016-2115 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2115.html CVE-2016-2115 https://bugzilla.suse.com/973036 SUSE Bug 973036 https://bugzilla.suse.com/975276 SUSE Bug 975276 https://bugzilla.suse.com/977416 SUSE Bug 977416 The MS-SAMR and MS-LSAD protocol implementations in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 mishandle DCERPC connections, which allows man-in-the-middle attackers to perform protocol-downgrade attacks and impersonate users by modifying the client-server data stream, aka "BADLOCK." CVE-2016-2118 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2118.html CVE-2016-2118 https://bugzilla.suse.com/971965 SUSE Bug 971965 https://bugzilla.suse.com/975276 SUSE Bug 975276 https://bugzilla.suse.com/977416 SUSE Bug 977416 libcli/smb/smbXcli_base.c in Samba 4.x before 4.2.14, 4.3.x before 4.3.11, and 4.4.x before 4.4.5 allows man-in-the-middle attackers to bypass a client-signing protection mechanism, and consequently spoof SMB2 and SMB3 servers, via the (1) SMB2_SESSION_FLAG_IS_GUEST or (2) SMB2_SESSION_FLAG_IS_NULL flag. CVE-2016-2119 openSUSE Tumbleweed:ctdb-4.5.0-1.1 openSUSE Tumbleweed:ctdb-pcp-pmda-4.5.0-1.1 openSUSE Tumbleweed:ctdb-tests-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-binding0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr-devel-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc-samr0-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libdcerpc0-4.5.0-1.1 openSUSE Tumbleweed:libndr-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-krb5pac0-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-nbt0-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard-devel-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr-standard0-4.5.0-1.1 openSUSE Tumbleweed:libndr0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libndr0-4.5.0-1.1 openSUSE Tumbleweed:libnetapi-devel-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libnetapi0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-credentials0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-errors0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-hostconfig0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-passdb0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-policy0-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamba-util0-4.5.0-1.1 openSUSE Tumbleweed:libsamdb-devel-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsamdb0-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbclient0-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbconf0-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap-devel-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libsmbldap0-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util-devel-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libtevent-util0-4.5.0-1.1 openSUSE Tumbleweed:libwbclient-devel-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-32bit-4.5.0-1.1 openSUSE Tumbleweed:libwbclient0-4.5.0-1.1 openSUSE Tumbleweed:samba-4.5.0-1.1 openSUSE Tumbleweed:samba-ceph-4.5.0-1.1 openSUSE Tumbleweed:samba-client-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-client-4.5.0-1.1 openSUSE Tumbleweed:samba-core-devel-4.5.0-1.1 openSUSE Tumbleweed:samba-doc-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-libs-4.5.0-1.1 openSUSE Tumbleweed:samba-pidl-4.5.0-1.1 openSUSE Tumbleweed:samba-python-4.5.0-1.1 openSUSE Tumbleweed:samba-test-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-32bit-4.5.0-1.1 openSUSE Tumbleweed:samba-winbind-4.5.0-1.1 moderate 4.3 AV:A/AC:M/Au:N/C:P/I:P/A:N 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2119.html CVE-2016-2119 https://bugzilla.suse.com/986869 SUSE Bug 986869