Security update for samba (moderate)

2019-04-29T15:13:17
ID OPENSUSE-SU-2019:1292-1
Type suse
Reporter Suse
Modified 2019-04-29T15:13:17

Description

This update for samba fixes the following issues:

Security issue fixed:

  • CVE-2019-3880: Fixed a path/symlink traversal vulnerability, which allowed an unprivileged user to save registry files outside a share (bsc#1131060).

Non-security issues fixed:

  • Fix vfs_ceph ftruncate and fallocate handling (bsc#1127153).
  • Abide by load_printers smb.conf parameter (bsc#1124223).
  • s3:winbindd: let normalize_name_map() call find_domain_from_name_noinit() (bsc#1123755).
  • s3:passdb: Do not return OK if we don't have pinfo set up (bsc#1099590).
  • s3:winbind: Fix regression (bsc#1123755).

This update was imported from the SUSE:SLE-12-SP3:Update update project.