SUSE-SU-2015:0371-1

See a problem?

Import Source

https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2015:0371-1.json

JSON Data

https://api.osv.dev/v1/vulns/SUSE-SU-2015:0371-1

Related

CVE-2015-0240

Published

2015-02-17T19:39:13Z

Modified

2015-02-17T19:39:13Z

Summary

Security update for Samba

Details

Samba has been updated to fix one security issue:

* CVE-2015-0240: Don't call talloc_free on an uninitialized pointer
  (bnc#917376).

Additionally, these non-security issues have been fixed:

* Realign the winbind request structure following require_membership_of
  field expansion (bnc#913001).
* Reuse connections derived from DFS referrals (bso#10123,
  fate#316512).
* Set domain/workgroup based on authentication callback value
  (bso#11059).
* Fix spoolss error response marshalling (bso#10984).
* Fix spoolss EnumJobs and GetJob responses (bso#10905, bnc#898031).
* Fix handling of bad EnumJobs levels (bso#10898).
* Fix small memory-leak in the background print process; (bnc#899558).
* Prune idle or hung connections older than 'winbind request timeout'
  (bso#3204, bnc#872912).

Security Issues:

* CVE-2015-0240
  <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0240>

References

SUSE-SU-2015:0371-1

Affected packages