Novell Home

CVE-2013-4475

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2013-4475 at MITRE

Description

Samba 3.x before 3.6.20, 4.0.x before 4.0.11, and 4.1.x before 4.1.1, when vfs_streams_depot or vfs_streams_xattr is enabled, allows remote attackers to bypass intended file restrictions by leveraging ACL differences between a file and an associated alternate data stream (ADS).

NVD CVSS v2 Base Score: 4.0 (AV:N/AC:H/Au:N/C:P/I:P/A:N)

Novell/SUSE information

Note from the SUSE Security Team

This only affects Samba versions 3.2 and higher, so SUSE Linux Enterprise 10 and older products are not affected.

Novell Bugzilla entry: 848101, 880220

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Server 11 SP1
  • samba-debuginfo >= 3.4.3-1.54.1
  • samba-debuginfo-32bit >= 3.4.3-1.54.1
Builds
SAT Patch Nr: 9315
SLE 11 SP2 DEBUGINFO
  • samba-debuginfo >= 3.6.3-0.33.39.1
  • samba-debugsource >= 3.6.3-0.33.39.1
Builds
SAT Patch Nr: 8656
SLE 11 SP2 DEBUGINFO
  • samba-debuginfo >= 3.6.3-0.33.39.1
  • samba-debuginfo-x86 >= 3.6.3-0.33.39.1
  • samba-debugsource >= 3.6.3-0.33.39.1
Builds
SAT Patch Nr: 8656
SLE 11 SP2 DEBUGINFO
  • samba-debuginfo >= 3.6.3-0.33.39.1
  • samba-debuginfo-32bit >= 3.6.3-0.33.39.1
  • samba-debugsource >= 3.6.3-0.33.39.1
Builds
SAT Patch Nr: 8656
SUSE Linux Enterprise Software Development Kit 11 SP2
  • libldb-devel >= 3.6.3-0.33.39.1
  • libnetapi-devel >= 3.6.3-0.33.39.1
  • libnetapi0 >= 3.6.3-0.33.39.1
  • libsmbclient-devel >= 3.6.3-0.33.39.1
  • libsmbsharemodes-devel >= 3.6.3-0.33.39.1
  • libsmbsharemodes0 >= 3.6.3-0.33.39.1
  • libtalloc-devel >= 3.6.3-0.33.39.1
  • libtdb-devel >= 3.6.3-0.33.39.1
  • libtevent-devel >= 3.6.3-0.33.39.1
  • libwbclient-devel >= 3.6.3-0.33.39.1
  • samba-devel >= 3.6.3-0.33.39.1
Builds
SAT Patch Nr: 8656
SUSE Linux Enterprise Desktop 11 SP2
  • libldb1 >= 3.6.3-0.33.39.1
  • libsmbclient0 >= 3.6.3-0.33.39.1
  • libtalloc1 >= 3.4.3-1.50.1
  • libtalloc2 >= 3.6.3-0.33.39.1
  • libtdb1 >= 3.6.3-0.33.39.1
  • libtevent0 >= 3.6.3-0.33.39.1
  • libwbclient0 >= 3.6.3-0.33.39.1
  • samba >= 3.6.3-0.33.39.1
  • samba-client >= 3.6.3-0.33.39.1
  • samba-doc >= 3.6.3-0.33.39.1
  • samba-krb-printing >= 3.6.3-0.33.39.1
  • samba-winbind >= 3.6.3-0.33.39.1
Builds
SAT Patch Nr: 8656
SUSE Linux Enterprise Desktop 11 SP2
  • libldb1 >= 3.6.3-0.33.39.1
  • libldb1-32bit >= 3.6.3-0.33.39.1
  • libsmbclient0 >= 3.6.3-0.33.39.1
  • libsmbclient0-32bit >= 3.6.3-0.33.39.1
  • libtalloc1 >= 3.4.3-1.50.1
  • libtalloc1-32bit >= 3.4.3-1.50.1
  • libtalloc2 >= 3.6.3-0.33.39.1
  • libtalloc2-32bit >= 3.6.3-0.33.39.1
  • libtdb1 >= 3.6.3-0.33.39.1
  • libtdb1-32bit >= 3.6.3-0.33.39.1
  • libtevent0 >= 3.6.3-0.33.39.1
  • libtevent0-32bit >= 3.6.3-0.33.39.1
  • libwbclient0 >= 3.6.3-0.33.39.1
  • libwbclient0-32bit >= 3.6.3-0.33.39.1
  • samba >= 3.6.3-0.33.39.1
  • samba-32bit >= 3.6.3-0.33.39.1
  • samba-client >= 3.6.3-0.33.39.1
  • samba-client-32bit >= 3.6.3-0.33.39.1
  • samba-doc >= 3.6.3-0.33.39.1
  • samba-krb-printing >= 3.6.3-0.33.39.1
  • samba-winbind >= 3.6.3-0.33.39.1
  • samba-winbind-32bit >= 3.6.3-0.33.39.1
Builds
SAT Patch Nr: 8656
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2 for VMware
  • ldapsmb >= 1.34b-12.33.39.1
  • libldb1 >= 3.6.3-0.33.39.1
  • libsmbclient0 >= 3.6.3-0.33.39.1
  • libtalloc1 >= 3.4.3-1.50.1
  • libtalloc2 >= 3.6.3-0.33.39.1
  • libtdb1 >= 3.6.3-0.33.39.1
  • libtevent0 >= 3.6.3-0.33.39.1
  • libwbclient0 >= 3.6.3-0.33.39.1
  • samba >= 3.6.3-0.33.39.1
  • samba-client >= 3.6.3-0.33.39.1
  • samba-doc >= 3.6.3-0.33.39.1
  • samba-krb-printing >= 3.6.3-0.33.39.1
  • samba-winbind >= 3.6.3-0.33.39.1
Builds
SAT Patch Nr: 8656
SUSE Linux Enterprise Server 11 SP2
  • ldapsmb >= 1.34b-12.33.39.1
  • libldb1 >= 3.6.3-0.33.39.1
  • libsmbclient0 >= 3.6.3-0.33.39.1
  • libsmbclient0-x86 >= 3.6.3-0.33.39.1
  • libtalloc1 >= 3.4.3-1.50.1
  • libtalloc1-x86 >= 3.4.3-1.50.1
  • libtalloc2 >= 3.6.3-0.33.39.1
  • libtalloc2-x86 >= 3.6.3-0.33.39.1
  • libtdb1 >= 3.6.3-0.33.39.1
  • libtdb1-x86 >= 3.6.3-0.33.39.1
  • libtevent0 >= 3.6.3-0.33.39.1
  • libwbclient0 >= 3.6.3-0.33.39.1
  • libwbclient0-x86 >= 3.6.3-0.33.39.1
  • samba >= 3.6.3-0.33.39.1
  • samba-client >= 3.6.3-0.33.39.1
  • samba-client-x86 >= 3.6.3-0.33.39.1
  • samba-doc >= 3.6.3-0.33.39.1
  • samba-krb-printing >= 3.6.3-0.33.39.1
  • samba-winbind >= 3.6.3-0.33.39.1
  • samba-winbind-x86 >= 3.6.3-0.33.39.1
  • samba-x86 >= 3.6.3-0.33.39.1
Builds
SAT Patch Nr: 8656
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2 for VMware
  • ldapsmb >= 1.34b-12.33.39.1
  • libldb1 >= 3.6.3-0.33.39.1
  • libsmbclient0 >= 3.6.3-0.33.39.1
  • libsmbclient0-32bit >= 3.6.3-0.33.39.1
  • libtalloc1 >= 3.4.3-1.50.1
  • libtalloc1-32bit >= 3.4.3-1.50.1
  • libtalloc2 >= 3.6.3-0.33.39.1
  • libtalloc2-32bit >= 3.6.3-0.33.39.1
  • libtdb1 >= 3.6.3-0.33.39.1
  • libtdb1-32bit >= 3.6.3-0.33.39.1
  • libtevent0 >= 3.6.3-0.33.39.1
  • libtevent0-32bit >= 3.6.3-0.33.39.1
  • libwbclient0 >= 3.6.3-0.33.39.1
  • libwbclient0-32bit >= 3.6.3-0.33.39.1
  • samba >= 3.6.3-0.33.39.1
  • samba-32bit >= 3.6.3-0.33.39.1
  • samba-client >= 3.6.3-0.33.39.1
  • samba-client-32bit >= 3.6.3-0.33.39.1
  • samba-doc >= 3.6.3-0.33.39.1
  • samba-krb-printing >= 3.6.3-0.33.39.1
  • samba-winbind >= 3.6.3-0.33.39.1
  • samba-winbind-32bit >= 3.6.3-0.33.39.1
Builds
SAT Patch Nr: 8656
SLE 11 SP3 DEBUGINFO
  • samba-debuginfo >= 3.6.3-0.46.1
  • samba-debugsource >= 3.6.3-0.46.1
Builds
SAT Patch Nr: 8655
SLE 11 SP3 DEBUGINFO
  • samba-debuginfo >= 3.6.3-0.46.1
  • samba-debuginfo-x86 >= 3.6.3-0.46.1
  • samba-debugsource >= 3.6.3-0.46.1
Builds
SAT Patch Nr: 8655
SLE 11 SP3 DEBUGINFO
  • samba-debuginfo >= 3.6.3-0.46.1
  • samba-debuginfo-32bit >= 3.6.3-0.46.1
  • samba-debugsource >= 3.6.3-0.46.1
Builds
SAT Patch Nr: 8655
SUSE Linux Enterprise Software Development Kit 11 SP3
  • libldb-devel >= 3.6.3-0.46.1
  • libnetapi-devel >= 3.6.3-0.46.1
  • libnetapi0 >= 3.6.3-0.46.1
  • libsmbclient-devel >= 3.6.3-0.46.1
  • libsmbsharemodes-devel >= 3.6.3-0.46.1
  • libsmbsharemodes0 >= 3.6.3-0.46.1
  • libtalloc-devel >= 3.6.3-0.46.1
  • libtdb-devel >= 3.6.3-0.46.1
  • libtevent-devel >= 3.6.3-0.46.1
  • libwbclient-devel >= 3.6.3-0.46.1
  • samba-devel >= 3.6.3-0.46.1
Builds
SAT Patch Nr: 8655
SUSE Linux Enterprise Desktop 11 SP3
  • libldb1 >= 3.6.3-0.46.1
  • libsmbclient0 >= 3.6.3-0.46.1
  • libtalloc2 >= 3.6.3-0.46.1
  • libtdb1 >= 3.6.3-0.46.1
  • libtevent0 >= 3.6.3-0.46.1
  • libwbclient0 >= 3.6.3-0.46.1
  • samba >= 3.6.3-0.46.1
  • samba-client >= 3.6.3-0.46.1
  • samba-doc >= 3.6.3-0.46.1
  • samba-krb-printing >= 3.6.3-0.46.1
  • samba-winbind >= 3.6.3-0.46.1
Builds
SAT Patch Nr: 8655
SUSE Linux Enterprise Desktop 11 SP3
  • libldb1 >= 3.6.3-0.46.1
  • libldb1-32bit >= 3.6.3-0.46.1
  • libsmbclient0 >= 3.6.3-0.46.1
  • libsmbclient0-32bit >= 3.6.3-0.46.1
  • libtalloc2 >= 3.6.3-0.46.1
  • libtalloc2-32bit >= 3.6.3-0.46.1
  • libtdb1 >= 3.6.3-0.46.1
  • libtdb1-32bit >= 3.6.3-0.46.1
  • libtevent0 >= 3.6.3-0.46.1
  • libtevent0-32bit >= 3.6.3-0.46.1
  • libwbclient0 >= 3.6.3-0.46.1
  • libwbclient0-32bit >= 3.6.3-0.46.1
  • samba >= 3.6.3-0.46.1
  • samba-32bit >= 3.6.3-0.46.1
  • samba-client >= 3.6.3-0.46.1
  • samba-client-32bit >= 3.6.3-0.46.1
  • samba-doc >= 3.6.3-0.46.1
  • samba-krb-printing >= 3.6.3-0.46.1
  • samba-winbind >= 3.6.3-0.46.1
  • samba-winbind-32bit >= 3.6.3-0.46.1
Builds
SAT Patch Nr: 8655
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3 for VMware
  • ldapsmb >= 1.34b-12.46.1
  • libldb1 >= 3.6.3-0.46.1
  • libsmbclient0 >= 3.6.3-0.46.1
  • libtalloc2 >= 3.6.3-0.46.1
  • libtdb1 >= 3.6.3-0.46.1
  • libtevent0 >= 3.6.3-0.46.1
  • libwbclient0 >= 3.6.3-0.46.1
  • samba >= 3.6.3-0.46.1
  • samba-client >= 3.6.3-0.46.1
  • samba-doc >= 3.6.3-0.46.1
  • samba-krb-printing >= 3.6.3-0.46.1
  • samba-winbind >= 3.6.3-0.46.1
Builds
SAT Patch Nr: 8655
SUSE Linux Enterprise Server 11 SP3
  • ldapsmb >= 1.34b-12.46.1
  • libldb1 >= 3.6.3-0.46.1
  • libsmbclient0 >= 3.6.3-0.46.1
  • libsmbclient0-x86 >= 3.6.3-0.46.1
  • libtalloc2 >= 3.6.3-0.46.1
  • libtalloc2-x86 >= 3.6.3-0.46.1
  • libtdb1 >= 3.6.3-0.46.1
  • libtdb1-x86 >= 3.6.3-0.46.1
  • libtevent0 >= 3.6.3-0.46.1
  • libwbclient0 >= 3.6.3-0.46.1
  • libwbclient0-x86 >= 3.6.3-0.46.1
  • samba >= 3.6.3-0.46.1
  • samba-client >= 3.6.3-0.46.1
  • samba-client-x86 >= 3.6.3-0.46.1
  • samba-doc >= 3.6.3-0.46.1
  • samba-krb-printing >= 3.6.3-0.46.1
  • samba-winbind >= 3.6.3-0.46.1
  • samba-winbind-x86 >= 3.6.3-0.46.1
  • samba-x86 >= 3.6.3-0.46.1
Builds
SAT Patch Nr: 8655
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3 for VMware
  • ldapsmb >= 1.34b-12.46.1
  • libldb1 >= 3.6.3-0.46.1
  • libsmbclient0 >= 3.6.3-0.46.1
  • libsmbclient0-32bit >= 3.6.3-0.46.1
  • libtalloc2 >= 3.6.3-0.46.1
  • libtalloc2-32bit >= 3.6.3-0.46.1
  • libtdb1 >= 3.6.3-0.46.1
  • libtdb1-32bit >= 3.6.3-0.46.1
  • libtevent0 >= 3.6.3-0.46.1
  • libtevent0-32bit >= 3.6.3-0.46.1
  • libwbclient0 >= 3.6.3-0.46.1
  • libwbclient0-32bit >= 3.6.3-0.46.1
  • samba >= 3.6.3-0.46.1
  • samba-32bit >= 3.6.3-0.46.1
  • samba-client >= 3.6.3-0.46.1
  • samba-client-32bit >= 3.6.3-0.46.1
  • samba-doc >= 3.6.3-0.46.1
  • samba-krb-printing >= 3.6.3-0.46.1
  • samba-winbind >= 3.6.3-0.46.1
  • samba-winbind-32bit >= 3.6.3-0.46.1
Builds
SAT Patch Nr: 8655
SLE 11 SP1 DEBUGINFO
  • samba-debuginfo >= 3.4.3-1.54.1
  • samba-debugsource >= 3.4.3-1.54.1
Builds
SAT Patch Nr: 9316
SLE 11 SP1 DEBUGINFO
  • samba-debuginfo >= 3.4.3-1.54.1
  • samba-debuginfo-32bit >= 3.4.3-1.54.1
  • samba-debugsource >= 3.4.3-1.54.1
Builds
SAT Patch Nr: 9316
SUSE Linux Enterprise Server 11 SP1 LTSS
  • cifs-mount >= 3.4.3-1.54.1
  • ldapsmb >= 1.34b-11.28.54.1
  • libsmbclient0 >= 3.4.3-1.54.1
  • libtalloc1 >= 3.4.3-1.54.1
  • libtdb1 >= 3.4.3-1.54.1
  • libwbclient0 >= 3.4.3-1.54.1
  • samba >= 3.4.3-1.54.1
  • samba-client >= 3.4.3-1.54.1
  • samba-doc >= 3.4.3-1.54.1
  • samba-krb-printing >= 3.4.3-1.54.1
  • samba-winbind >= 3.4.3-1.54.1
Builds
SAT Patch Nr: 9316
SUSE Linux Enterprise Server 11 SP1 LTSS
  • cifs-mount >= 3.4.3-1.54.1
  • ldapsmb >= 1.34b-11.28.54.1
  • libsmbclient0 >= 3.4.3-1.54.1
  • libsmbclient0-32bit >= 3.4.3-1.54.1
  • libtalloc1 >= 3.4.3-1.54.1
  • libtalloc1-32bit >= 3.4.3-1.54.1
  • libtdb1 >= 3.4.3-1.54.1
  • libtdb1-32bit >= 3.4.3-1.54.1
  • libwbclient0 >= 3.4.3-1.54.1
  • libwbclient0-32bit >= 3.4.3-1.54.1
  • samba >= 3.4.3-1.54.1
  • samba-32bit >= 3.4.3-1.54.1
  • samba-client >= 3.4.3-1.54.1
  • samba-client-32bit >= 3.4.3-1.54.1
  • samba-doc >= 3.4.3-1.54.1
  • samba-krb-printing >= 3.4.3-1.54.1
  • samba-winbind >= 3.4.3-1.54.1
  • samba-winbind-32bit >= 3.4.3-1.54.1
Builds
SAT Patch Nr: 9316

© 2014 Novell