SuSE 10 Security Update : Samba (ZYPP Patch Number 8449)
Medium Nessus Plugin ID 64865
The remote SuSE 10 host is missing a security-related patch.
The Samba Web Administration Tool (SWAT) in Samba versions 3.0.x to 4.0.1 was affected by a cross-site request forgery (CVE-2013-0214) and a click-jacking attack (CVE-2013-0213). This has been fixed. Additionally a bug in mount.cifs has been fixed which could have lead to file disclosure. (CVE-2012-1586) Also a uninitialized memory read bug in talloc_free() has been fixed. . (bnc#764577)