Security update for Samba

SUSE Security Update: Security update for Samba

Announcement ID:	SUSE-SU-2012:0573-1
Rating:	important
References:	#757576
Affected Products:	SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Server 11 SP2 for VMware SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Desktop 11 SP2

An update that fixes one vulnerability is now available.

Description:

This update of Samba fixes one security issue and several
bugs.

The security fix is:

* Ensure that users cannot hand out their own
privileges to everyone, only administrators are allowed to
do that. (CVE-2012-2111
> )

The non-security bug fixes merged from upstream Samba are:

* Fix default name resolve order. (docs-xml, bso#7564).
* Fix a segfault in vfs_aio_fork. (s3-aio-fork,
bso#8836).
* Remove whitespace in example samba.ldif. (docs,
bso#8789)
* Move print_backend_init() behind init_system_info().
(s3-smbd, bso#8845)
* Prepend '/' to filename argument. (s3-docs, bso#8826)

Patch Instructions:

To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:

SUSE Linux Enterprise Software Development Kit 11 SP2:
zypper in -t patch sdksp2-ldapsmb-6211
SUSE Linux Enterprise Server 11 SP2 for VMware:
zypper in -t patch slessp2-ldapsmb-6211
SUSE Linux Enterprise Server 11 SP2:
zypper in -t patch slessp2-ldapsmb-6211
SUSE Linux Enterprise Desktop 11 SP2:
zypper in -t patch sledsp2-ldapsmb-6211

To bring your system up-to-date, use "zypper patch".

Package List:

SUSE Linux Enterprise Software Development Kit 11 SP2 (i586 ia64 ppc64 s390x x86_64):

libldb-devel-3.6.3-0.24.4

libnetapi-devel-3.6.3-0.24.4

libnetapi0-3.6.3-0.24.4

libsmbclient-devel-3.6.3-0.24.4

libsmbsharemodes-devel-3.6.3-0.24.4

libsmbsharemodes0-3.6.3-0.24.4

libtalloc-devel-3.6.3-0.24.4

libtdb-devel-3.6.3-0.24.4

libtevent-devel-3.6.3-0.24.4

libwbclient-devel-3.6.3-0.24.4

samba-devel-3.6.3-0.24.4
SUSE Linux Enterprise Server 11 SP2 for VMware (i586 x86_64):

ldapsmb-1.34b-12.24.4

libldb1-3.6.3-0.24.4

libsmbclient0-3.6.3-0.24.4

libtalloc2-3.6.3-0.24.4

libtdb1-3.6.3-0.24.4

libtevent0-3.6.3-0.24.4

libwbclient0-3.6.3-0.24.4

samba-3.6.3-0.24.4

samba-client-3.6.3-0.24.4

samba-krb-printing-3.6.3-0.24.4

samba-winbind-3.6.3-0.24.4
SUSE Linux Enterprise Server 11 SP2 for VMware (x86_64):

libsmbclient0-32bit-3.6.3-0.24.4

libtalloc2-32bit-3.6.3-0.24.4

libtdb1-32bit-3.6.3-0.24.4

libwbclient0-32bit-3.6.3-0.24.4

samba-32bit-3.6.3-0.24.4

samba-client-32bit-3.6.3-0.24.4

samba-winbind-32bit-3.6.3-0.24.4
SUSE Linux Enterprise Server 11 SP2 for VMware (noarch):

samba-doc-3.6.3-0.24.4
SUSE Linux Enterprise Server 11 SP2 (i586 ia64 ppc64 s390x x86_64):

ldapsmb-1.34b-12.24.4

libldb1-3.6.3-0.24.4

libsmbclient0-3.6.3-0.24.4

libtalloc2-3.6.3-0.24.4

libtdb1-3.6.3-0.24.4

libtevent0-3.6.3-0.24.4

libwbclient0-3.6.3-0.24.4

samba-3.6.3-0.24.4

samba-client-3.6.3-0.24.4

samba-krb-printing-3.6.3-0.24.4

samba-winbind-3.6.3-0.24.4
SUSE Linux Enterprise Server 11 SP2 (ppc64 s390x x86_64):

libsmbclient0-32bit-3.6.3-0.24.4

libtalloc2-32bit-3.6.3-0.24.4

libtdb1-32bit-3.6.3-0.24.4

libwbclient0-32bit-3.6.3-0.24.4

samba-32bit-3.6.3-0.24.4

samba-client-32bit-3.6.3-0.24.4

samba-winbind-32bit-3.6.3-0.24.4
SUSE Linux Enterprise Server 11 SP2 (noarch):

samba-doc-3.6.3-0.24.4
SUSE Linux Enterprise Server 11 SP2 (ia64):

libsmbclient0-x86-3.6.3-0.24.4

libtalloc2-x86-3.6.3-0.24.4

libtdb1-x86-3.6.3-0.24.4

libwbclient0-x86-3.6.3-0.24.4

samba-client-x86-3.6.3-0.24.4

samba-winbind-x86-3.6.3-0.24.4

samba-x86-3.6.3-0.24.4
SUSE Linux Enterprise Desktop 11 SP2 (i586 x86_64):

libldb1-3.6.3-0.24.4

libsmbclient0-3.6.3-0.24.4

libtalloc2-3.6.3-0.24.4

libtdb1-3.6.3-0.24.4

libtevent0-3.6.3-0.24.4

libwbclient0-3.6.3-0.24.4

samba-3.6.3-0.24.4

samba-client-3.6.3-0.24.4

samba-krb-printing-3.6.3-0.24.4

samba-winbind-3.6.3-0.24.4
SUSE Linux Enterprise Desktop 11 SP2 (x86_64):

libldb1-32bit-3.6.3-0.24.4

libsmbclient0-32bit-3.6.3-0.24.4

libtalloc2-32bit-3.6.3-0.24.4

libtdb1-32bit-3.6.3-0.24.4

libtevent0-32bit-3.6.3-0.24.4

libwbclient0-32bit-3.6.3-0.24.4

samba-32bit-3.6.3-0.24.4

samba-client-32bit-3.6.3-0.24.4

samba-winbind-32bit-3.6.3-0.24.4
SUSE Linux Enterprise Desktop 11 SP2 (noarch):

samba-doc-3.6.3-0.24.4

References:

http://support.novell.com/security/cve/CVE-2012-2111.html
https://bugzilla.novell.com/757576
http://download.suse.com/patch/finder/?keywords=70ea32a45e227ff8d0c05a55f3cae4c9