[linux-sparc-announce] LFSSA-2016-0013 Linux for SPARC 1.0 samba security update

Announcements for Linux for SPARC linux-sparc-announce at oss.oracle.com
Fri Jan 8 14:53:55 PST 2016 

Linux for SPARC Security Advisory LFSSA-2016-0013

The following updated rpms for Linux for SPARC 1.0 have been uploaded to 
the yum.oracle.com:

sparc64:
libsmbclient-3.6.23-24.0.1.el6_7.sparc64.rpm
libsmbclient-devel-3.6.23-24.0.1.el6_7.sparc64.rpm
samba-3.6.23-24.0.1.el6_7.sparc64.rpm
samba-client-3.6.23-24.0.1.el6_7.sparc64.rpm
samba-common-3.6.23-24.0.1.el6_7.sparc64.rpm
samba-doc-3.6.23-24.0.1.el6_7.sparc64.rpm
samba-domainjoin-gui-3.6.23-24.0.1.el6_7.sparc64.rpm
samba-swat-3.6.23-24.0.1.el6_7.sparc64.rpm
samba-winbind-3.6.23-24.0.1.el6_7.sparc64.rpm
samba-winbind-clients-3.6.23-24.0.1.el6_7.sparc64.rpm
samba-winbind-devel-3.6.23-24.0.1.el6_7.sparc64.rpm
samba-winbind-krb5-locator-3.6.23-24.0.1.el6_7.sparc64.rpm


SRPMS:
http://yum.oracle.com/repo/linux_sparc64/latest/samba-3.6.23-24.0.1.el6_7.src.rpm



Description of changes:

[0:3.6.23-24.0.1]
- Remove use-after-free talloc_tos() inlined function problem (John 
Haxby) [orabug 18253258]

[3.6.23-24]
- related: #1290706 - Update patch for CVE-2015-5330

[3.6.23-22]
- resolves: #1290706 - CVE-2015-5299
- related: #1290706 - CVE-2015-5296
- related: #1290706 - CVE-2015-5252
- related: #1290706 - CVE-2015-5330

[3.6.23-21]
- resolves: #1252180 - Fix 'force group' with 'winbind use default domain'.
- resolves: #1250100 - Fix segfault in pam_winbind if option parsing fails

[3.6.23-20]
- resolves: #1164269 - Fix rpcclient timeout command.

[3.6.23-19]
- resolves: #1201611 - Fix 'force user' with 'winbind use default domain'.

[3.6.23-18]
- resolves: #1194549 - Fix winbind caching issue and support SID 
compression.

[3.6.23-17]
- resolves: #1192211 - Fix restoring shadow copy snapshot with SMB2.

[3.6.23-16]
- resolves: #1117059 - Fix nss group enumeration with unresolved groups.

[3.6.23-15]
- resolves: #1165750 - Fix guid retrieval for published printers.
- resolves: #1163383 - Fix 'net ads join -k' with existing keytab entries.
- resolves: #1195456 - Fix starting daemons on read only filesystems.
- resolves: #1138552 - Fix CPU utilization when re-reading the printcap 
info.
- resolves: #1144916 - Fix smbclient NTLMv2 authentication.
- resolves: #1164336 - Document 'sharesec' command for
                        'access based share enum' option.

[3.6.23-14]
- related: #1191339 - Update patchset for CVE-2015-0240.

[3.6.23-13]
- resolves: #1191339 - CVE-2015-0240: RCE in netlogon.

[3.6.23-12]
- resolves: #1127723 - Fix samlogon secure channel recovery.

[3.6.23-11]
- resolves: #1129006 - Add config variables to set spoolss os version.

[3.6.23-10]
- resolves: #1124835 - Fix dropbox share.

[3.6.23-9]
- related: #1053886 - Fix receiving the gecos field with winbind.

[3.6.23-8]
- resolves: #1110733 - Fix write operations as guest with 'security = 
share'.
- resolves: #1053886 - Fix receiving the gecos field with winbind.

[3.6.23-7]
- resolves: #1107777 - Fix SMB2 with "case sensitive = True"

[3.6.23-6]
- resolves: #1105500 - CVE-2014-0244: DoS in nmbd.
- resolves: #1108841 - CVE-2014-3493: DoS in smbd with unicode path names.

[3.6.23-5]
- related: #1061301 - Only link glusterfs libraries to vfs module.

[3.6.23-4]
- resolves: #1051656 - Fix gecos field copy debug warning.
- resolves: #1061301 - Add glusterfs vfs module.
- resolves: #1087472 - Fix libsmbclient crash when HOME variable isn't set.
- resolves: #1099443 - 'net ads testjoin' fails with IPv6.
- resolves: #1100670 - Fix 'force user' with 'security = ads'.
- resolves: #1096522 - Fix enabling SMB2 causes file operations to fail.

[3.6.23-3]
- resolves: #1081539 - Add timeout option to smbclient.

[3.6.23-2]
- resolves: #1022534 - Do not build Samba with fam support.
- resolves: #1059301 - Fix nbt query with many components.
- resolves: #1057332 - Fix force user with guest account.
- resolves: #1021706 - Fix %G substitution in 'template homedir'.
- resolves: #1040472 - Fix group expansion in service path.
- resolves: #1069570 - Fix memory leak reading printer list.
- resolves: #1067607 - Fix wbinfo -i with one-way trusts.
- resolves: #1050887 - Fix 100% CPU utilization in winbindd when trying to
                        free memory in winbindd_reinit_after_fork.
- resolves: #1029000 - Fix 'force user' with 'security = ads'.

[3.6.23-1]
- resolves: #1073356 - Fix CVE-2013-4496, CVE-2012-6150 and CVE-2013-6442.
- resolves: #1018038 - Fix CVE-2013-4408.

[3.6.22-1]
- resolves: #1003921 - Rebase Samba to 3.6.22.
- resolves: #1035332 - Fix force user with 'security = user'.

More information about the linux-sparc-announce mailing list