SuSE 11.2 Security Update : Samba (SAT Patch Number 8170)

Medium Nessus Plugin ID 70018


The remote SuSE 11 host is missing one or more security updates.


The Samba server suite received a security update to fix a denial of service problem in integer wrap protection. (CVE-2013-4124).

Additionally, the following stability fixes are included in this update :

- Do not restart the smbfs service on pre-11.3 systems during dhcp lease renewal when the IP address remains the same. (bnc#800782)

- Fix smbclient recursive mget EPERM handling.

- Fix SMB1 Session Setup AndX handling with a large krb PAC. (bnc#802031)

- Fix periodic printcap cache reloads. (bnc#807334)

- Fix AD printer publishing. (bnc#798856)

- Add extra attributes for AD printer publishing.

- Fix is_printer_published GUID retrieval. (bnc#798856)

- Fix vfs_catia module. (bnc#824833)

- Don't modify the pidfile name when a custom config file path is used. (bnc#812929)

- Fix the username map optimization. (bnc#815994)

- Fix libreplace license ambiguity. (bnc#765270)

- Document idmap_ad rfc2307 attribute requirements.

- The pam_winbind require_membership_of option allows for a list of SID, but currently only provides buffer space for ~20. (bnc#806501)


Apply SAT patch number 8170.

See Also

Plugin Details

Severity: Medium

ID: 70018

File Name: suse_11_cifs-mount-130806.nasl

Version: $Revision: 1.9 $

Type: local

Agent: unix

Published: 2013/09/20

Modified: 2015/01/13

Dependencies: 12634

Risk Information

Risk Factor: Medium


Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:11:ldapsmb, p-cpe:/a:novell:suse_linux:11:libldb1, p-cpe:/a:novell:suse_linux:11:libldb1-32bit, p-cpe:/a:novell:suse_linux:11:libsmbclient0, p-cpe:/a:novell:suse_linux:11:libsmbclient0-32bit, p-cpe:/a:novell:suse_linux:11:libtalloc1, p-cpe:/a:novell:suse_linux:11:libtalloc1-32bit, p-cpe:/a:novell:suse_linux:11:libtalloc2, p-cpe:/a:novell:suse_linux:11:libtalloc2-32bit, p-cpe:/a:novell:suse_linux:11:libtdb1, p-cpe:/a:novell:suse_linux:11:libtdb1-32bit, p-cpe:/a:novell:suse_linux:11:libtevent0, p-cpe:/a:novell:suse_linux:11:libtevent0-32bit, p-cpe:/a:novell:suse_linux:11:libwbclient0, p-cpe:/a:novell:suse_linux:11:libwbclient0-32bit, p-cpe:/a:novell:suse_linux:11:samba, p-cpe:/a:novell:suse_linux:11:samba-32bit, p-cpe:/a:novell:suse_linux:11:samba-client, p-cpe:/a:novell:suse_linux:11:samba-client-32bit, p-cpe:/a:novell:suse_linux:11:samba-doc, p-cpe:/a:novell:suse_linux:11:samba-krb-printing, p-cpe:/a:novell:suse_linux:11:samba-winbind, p-cpe:/a:novell:suse_linux:11:samba-winbind-32bit, cpe:/o:novell:suse_linux:11

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 2013/08/06

Reference Information

CVE: CVE-2013-4124