Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2016:0032-1)
Summary:The remote host is missing an update for the 'samba' package(s) announced via the SUSE-SU-2016:0032-1 advisory.
The remote host is missing an update for the 'samba' package(s) announced via the SUSE-SU-2016:0032-1 advisory.

Vulnerability Insight:
This update for Samba fixes the following security issues:
- CVE-2015-5330: Remote read memory exploit in LDB (bnc#958586).
- CVE-2015-5252: Insufficient symlink verification (file access outside
the share) (bnc#958582).
- CVE-2015-5296: No man in the middle protection when forcing smb
encryption on the client side (bnc#958584).
- CVE-2015-5299: Currently the snapshot browsing is not secure thru
windows previous version (shadow_copy2) (bnc#958583).
Non-security issues fixed:
- Prevent null pointer access in samlogon fallback when security
credentials are null (bnc#949022).
- Address unrecoverable winbind failure: 'key length too large'
- Take resource group sids into account when caching netsamlogon data
- Use domain name if search by domain SID fails to send SIDHistory lookups
to correct idmap backend (bnc#773464).
- Remove deprecated base_rid example from idmap_rid manpage (bnc#913304).
- Purge printer name cache on spoolss SetPrinter change (bnc#901813).
- Fix lookup of groups with 'Local Domain' scope from Active Directory

Affected Software/OS:
'samba' package(s) on SUSE Linux Enterprise Server 11-SP2, SUSE Linux Enterprise Debuginfo 11-SP2

Please install the updated package(s).

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2015-5252
BugTraq ID: 79733
Debian Security Information: DSA-3433 (Google Search)
SuSE Security Announcement: SUSE-SU-2015:2304 (Google Search)
SuSE Security Announcement: SUSE-SU-2015:2305 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:0032 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:0164 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:1105 (Google Search)
SuSE Security Announcement: openSUSE-SU-2015:2354 (Google Search)
SuSE Security Announcement: openSUSE-SU-2015:2356 (Google Search)
SuSE Security Announcement: openSUSE-SU-2016:1064 (Google Search)
SuSE Security Announcement: openSUSE-SU-2016:1106 (Google Search)
SuSE Security Announcement: openSUSE-SU-2016:1107 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2015-5296
BugTraq ID: 79732
Common Vulnerability Exposure (CVE) ID: CVE-2015-5299
BugTraq ID: 79729
Common Vulnerability Exposure (CVE) ID: CVE-2015-5330
BugTraq ID: 79734
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.