File _patchinfo of Package patchinfo.8185

Overview Repositories Revisions Requests Users Attributes Meta

File _patchinfo of Package patchinfo.8185

<patchinfo incident="8185">
  <issue id="1095048" tracker="bnc"/>
  <issue id="1095056" tracker="bnc"/>
  <issue id="1095057" tracker="bnc"/>
  <issue id="1103411" tracker="bnc"/>
  <issue id="1103414" tracker="bnc"/>
  <issue id="2018-10858" tracker="cve" />
  <issue id="2018-10918" tracker="cve" />
  <issue id="2018-10919" tracker="cve" />
  <issue id="2018-1139" tracker="cve" />
  <issue id="2018-1140" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>aaptel</packager>
  <description>This update for samba fixes the following issues:

The following security vulnerabilities were fixed:

- CVE-2018-1139: Disable NTLMv1 auth if smb.conf doesn't allow it; (bsc#1095048)
- CVE-2018-1140: ldbsearch '(distinguishedName=abc)' and DNS query with escapes crashes; (bsc#1095056)
- CVE-2018-10919: Confidential attribute disclosure via substring search; (bsc#1095057)
- CVE-2018-10858: smbc_urlencode helper function is a subject to buffer overflow; (bsc#1103411)
- CVE-2018-10918: Fix NULL ptr dereference in DsCrackNames on a user without a SPN; (bsc#1103414)

</description>
  <summary>Security update for samba</summary>
</patchinfo>

Places

File _patchinfo of Package patchinfo.8185

Places