{"id":"SUSE-SU-2016:0032-1","summary":"Security update for samba","details":"This update for Samba fixes the following security issues:\n\n- CVE-2015-5330: Remote read memory exploit in LDB (bnc#958586).\n- CVE-2015-5252: Insufficient symlink verification (file access outside the share) (bnc#958582).\n- CVE-2015-5296: No man in the middle protection when forcing smb encryption on the client side (bnc#958584).\n- CVE-2015-5299: Currently the snapshot browsing is not secure thru windows previous version (shadow_copy2) (bnc#958583).\n\nNon-security issues fixed:\n\n- Prevent null pointer access in samlogon fallback when security credentials are null\n  (bnc#949022).\n- Address unrecoverable winbind failure: 'key length too large' (bnc#934299).\n- Take resource group sids into account when caching netsamlogon data (bnc#912457).\n- Use domain name if search by domain SID fails to send SIDHistory lookups to correct\n  idmap backend (bnc#773464).\n- Remove deprecated base_rid example from idmap_rid manpage (bnc#913304).\n- Purge printer name cache on spoolss SetPrinter change (bnc#901813).\n- Fix lookup of groups with 'Local Domain' scope from Active Directory (bnc#948244).\n  ","modified":"2026-02-04T02:19:57.936249Z","published":"2016-01-05T15:20:38Z","related":["CVE-2015-5252","CVE-2015-5296","CVE-2015-5299","CVE-2015-5330"],"upstream":["CVE-2015-5252","CVE-2015-5296","CVE-2015-5299","CVE-2015-5330"],"references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2016/suse-su-20160032-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/295284"},{"type":"REPORT","url":"https://bugzilla.suse.com/773464"},{"type":"REPORT","url":"https://bugzilla.suse.com/901813"},{"type":"REPORT","url":"https://bugzilla.suse.com/912457"},{"type":"REPORT","url":"https://bugzilla.suse.com/913304"},{"type":"REPORT","url":"https://bugzilla.suse.com/934299"},{"type":"REPORT","url":"https://bugzilla.suse.com/948244"},{"type":"REPORT","url":"https://bugzilla.suse.com/949022"},{"type":"REPORT","url":"https://bugzilla.suse.com/958582"},{"type":"REPORT","url":"https://bugzilla.suse.com/958583"},{"type":"REPORT","url":"https://bugzilla.suse.com/958584"},{"type":"REPORT","url":"https://bugzilla.suse.com/958586"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-5252"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-5296"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-5299"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-5330"}],"affected":[{"package":{"name":"samba","ecosystem":"SUSE:Linux Enterprise Server 11 SP2-LTSS","purl":"pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.6.3-45.2"}]}],"ecosystem_specific":{"binaries":[{"libwbclient0-32bit":"3.6.3-45.2","samba-client":"3.6.3-45.2","libtevent0-32bit":"3.6.3-45.2","libsmbclient0-32bit":"3.6.3-45.2","libldb1":"3.6.3-45.2","samba-client-32bit":"3.6.3-45.2","samba-winbind":"3.6.3-45.2","libtdb1":"3.6.3-45.2","libtevent0":"3.6.3-45.2","samba-doc":"3.6.3-45.2","libwbclient0":"3.6.3-45.2","samba-krb-printing":"3.6.3-45.2","libtalloc2-32bit":"3.6.3-45.2","samba":"3.6.3-45.2","libtdb1-32bit":"3.6.3-45.2","samba-32bit":"3.6.3-45.2","libtalloc2":"3.6.3-45.2","ldapsmb":"1.34b-45.2","libsmbclient0":"3.6.3-45.2","samba-winbind-32bit":"3.6.3-45.2"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2016:0032-1.json"}},{"package":{"name":"samba-doc","ecosystem":"SUSE:Linux Enterprise Server 11 SP2-LTSS","purl":"pkg:rpm/suse/samba-doc&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.6.3-45.2"}]}],"ecosystem_specific":{"binaries":[{"libwbclient0-32bit":"3.6.3-45.2","samba-client":"3.6.3-45.2","libtevent0-32bit":"3.6.3-45.2","libsmbclient0-32bit":"3.6.3-45.2","libldb1":"3.6.3-45.2","samba-client-32bit":"3.6.3-45.2","samba-winbind":"3.6.3-45.2","libtdb1":"3.6.3-45.2","libtevent0":"3.6.3-45.2","samba-doc":"3.6.3-45.2","libwbclient0":"3.6.3-45.2","samba-krb-printing":"3.6.3-45.2","libtalloc2-32bit":"3.6.3-45.2","samba":"3.6.3-45.2","libtdb1-32bit":"3.6.3-45.2","samba-32bit":"3.6.3-45.2","libtalloc2":"3.6.3-45.2","ldapsmb":"1.34b-45.2","libsmbclient0":"3.6.3-45.2","samba-winbind-32bit":"3.6.3-45.2"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2016:0032-1.json"}}],"schema_version":"1.7.3"}