{"affected":[{"ecosystem_specific":{"binaries":[{"libdcerpc-binding0":"4.11.14+git.308.666c63d4eea-4.28.1","libdcerpc-binding0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libdcerpc-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libdcerpc-samr-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libdcerpc-samr0":"4.11.14+git.308.666c63d4eea-4.28.1","libdcerpc0":"4.11.14+git.308.666c63d4eea-4.28.1","libdcerpc0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libndr-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libndr-krb5pac-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libndr-krb5pac0":"4.11.14+git.308.666c63d4eea-4.28.1","libndr-krb5pac0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libndr-nbt-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libndr-nbt0":"4.11.14+git.308.666c63d4eea-4.28.1","libndr-nbt0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libndr-standard-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libndr-standard0":"4.11.14+git.308.666c63d4eea-4.28.1","libndr-standard0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libndr0":"4.11.14+git.308.666c63d4eea-4.28.1","libndr0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libnetapi-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libnetapi0":"4.11.14+git.308.666c63d4eea-4.28.1","libnetapi0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-credentials-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-credentials0":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-credentials0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-errors-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-errors0":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-errors0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-hostconfig-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-hostconfig0":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-hostconfig0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-passdb-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-passdb0":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-passdb0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-policy-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-policy-python3-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-policy0-python3":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-util-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-util0":"4.11.14+git.308.666c63d4eea-4.28.1","libsamba-util0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libsamdb-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libsamdb0":"4.11.14+git.308.666c63d4eea-4.28.1","libsamdb0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libsmbclient-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libsmbclient0":"4.11.14+git.308.666c63d4eea-4.28.1","libsmbconf-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libsmbconf0":"4.11.14+git.308.666c63d4eea-4.28.1","libsmbconf0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libsmbldap-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libsmbldap2":"4.11.14+git.308.666c63d4eea-4.28.1","libsmbldap2-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libtevent-util-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libtevent-util0":"4.11.14+git.308.666c63d4eea-4.28.1","libtevent-util0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","libwbclient-devel":"4.11.14+git.308.666c63d4eea-4.28.1","libwbclient0":"4.11.14+git.308.666c63d4eea-4.28.1","libwbclient0-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","samba":"4.11.14+git.308.666c63d4eea-4.28.1","samba-ceph":"4.11.14+git.308.666c63d4eea-4.28.1","samba-client":"4.11.14+git.308.666c63d4eea-4.28.1","samba-core-devel":"4.11.14+git.308.666c63d4eea-4.28.1","samba-dsdb-modules":"4.11.14+git.308.666c63d4eea-4.28.1","samba-libs":"4.11.14+git.308.666c63d4eea-4.28.1","samba-libs-32bit":"4.11.14+git.308.666c63d4eea-4.28.1","samba-libs-python3":"4.11.14+git.308.666c63d4eea-4.28.1","samba-python3":"4.11.14+git.308.666c63d4eea-4.28.1","samba-winbind":"4.11.14+git.308.666c63d4eea-4.28.1","samba-winbind-32bit":"4.11.14+git.308.666c63d4eea-4.28.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP2","name":"samba","purl":"pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.11.14+git.308.666c63d4eea-4.28.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"samba-ad-dc":"4.11.14+git.308.666c63d4eea-4.28.1","samba-dsdb-modules":"4.11.14+git.308.666c63d4eea-4.28.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Python 2 15 SP2","name":"samba","purl":"pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%202%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.11.14+git.308.666c63d4eea-4.28.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"ctdb":"4.11.14+git.308.666c63d4eea-4.28.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Availability Extension 15 SP2","name":"samba","purl":"pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.11.14+git.308.666c63d4eea-4.28.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for samba fixes the following issues:\n\n- CVE-2016-2124: Fixed not to fallback to non spnego authentication if we require kerberos (bsc#1014440).\n- CVE-2020-25717: Fixed privilege escalation inside an AD Domain where a user could become root on domain members (bsc#1192284).\n- CVE-2021-23192: Fixed dcerpc requests to don't check all fragments against the first auth_state (bsc#1192214).\n","id":"SUSE-SU-2021:3650-1","modified":"2021-11-10T16:36:26Z","published":"2021-11-10T16:36:26Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2021/suse-su-20213650-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1014440"},{"type":"REPORT","url":"https://bugzilla.suse.com/1192214"},{"type":"REPORT","url":"https://bugzilla.suse.com/1192284"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-2124"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-25717"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-23192"}],"related":["CVE-2016-2124","CVE-2020-25717","CVE-2021-23192"],"summary":"Security update for samba","upstream":["CVE-2016-2124","CVE-2020-25717","CVE-2021-23192"]}