[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2022:0323-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":28,"duplicates":29,"related":30,"reserved_at":9,"published_at":38,"modified_at":39,"state":9,"summary":40,"references_raw":42,"kevs":127,"epss":9,"epss_history":128,"metrics":129,"affected":130},"SUSE-SU-2022:0323-1","Security update for samba\n\n\nThis update contains a major security update for Samba.\n\n\nsamba has received security fixes:\n\n- CVE-2021-44141: Information leak via symlinks of existance of\n  files or directories outside of the exported share (bsc#1193690);\n- CVE-2021-44142: Out-of-bounds heap read/write vulnerability\n  in VFS module vfs_fruit allows code execution (bsc#1194859);\n- CVE-2022-0336: Samba AD users with permission to write to an\n  account can impersonate arbitrary services (bsc#1195048);\n\nsamba was updated to version 4.15.4; (jsc#SLE-23330);\n\n+ CVE-2021-43566: Symlink race error can allow directory creation\n  outside of the exported share; (bso#13979); (bsc#1139519);\n+ CVE-2021-20316: Symlink race error can allow metadata read and\n  modify outside of the exported share; (bso#14842); (bsc#1191227);\n\n- Build samba with embedded talloc, pytalloc, pytalloc-util, tdb,\n  pytdb, tevent, pytevent, ldb, pyldb and pyldb-util libraries.\n  The tdb and ldb tools are installed in /usr/lib[64]/samba/bin and\n  their manpages in /usr/lib[64]/samba/man\n\n  This avoids removing old functionality.\n\nsamba was updated to 4.15.4:\n\n* Duplicate SMB file_ids leading to Windows client cache\n  poisoning; (bso#14928);\n* Failed to parse NTLMv2_RESPONSE length 95 - Buffer Size Error -\n  NT_STATUS_BUFFER_TOO_SMALL; (bso#14932);\n* kill_tcp_connections does not work; (bso#14934);\n* Can't connect to Windows shares not requiring authentication\n  using KDE/Gnome; (bso#14935);\n* smbclient -L doesn't set 'client max protocol' to NT1 before\n  calling the 'Reconnecting with SMB1 for workgroup listing'\n  path; (bso#14939);\n* Cross device copy of the crossrename module always fails;\n  (bso#14940);\n* symlinkat function from VFS cap module always fails with an\n  error; (bso#14941);\n* Fix possible fsp pointer deference; (bso#14942);\n* Missing pop_sec_ctx() in error path inside close_directory();\n  (bso#14944);\n* 'smbd --build-options' no longer works without an smb.conf file;\n  (bso#14945);\n\n- Reorganize libs packages. Split samba-libs into samba-client-libs,\n  samba-libs, samba-winbind-libs and samba-ad-dc-libs, merging samba\n  public libraries depending on internal samba libraries into these\n  packages as there were dependency problems everytime one of these\n  public libraries changed its version (bsc#1192684). The devel\n  packages are merged into samba-devel.\n- Rename package samba-core-devel to samba-devel\n- Update the symlink create by samba-dsdb-modules to private samba\n  ldb modules following libldb2 changes from /usr/lib64/ldb/samba to\n  /usr/lib64/ldb2/modules/ldb/samba\n\nsssd was updated:\n\n- Build with the newer samba versions; (jsc#SLE-23330);\n- Fix a dependency loop by moving internal libraries to sssd-common\n  package; (bsc#1182058);\n\np11-kit was updated:\n\nUpdate to 0.23.2; (jsc#SLE-23330);\n\n* Fix forking issues with libffi\n* Fix various crashes in corner cases\n* Updated translations\n* Build fixes\n\n- Fix multiple integer overflows in rpc code (bsc#1180064 CVE-2020-29361):\n- Add support for CKA_NSS_{SERVER,EMAIL}_DISTRUST_AFTER (bsc#1187993)\n\nca-certificates was updated:\n\n- p11-kit 0.23.1 supports pem-directory-hash. (jsc#SLE-23330)\n\nThis update also ships:\n\n- libnettle 3.1 and gnutls 3.4.17 as parallel libraries to meet the requires of the newer samba.\n\napparmor was updated:\n\n- Update samba apparmor profiles for samba 4.15 (jsc#SLE-23330);\n\nyast2-samba-client was updated:\n\n- With latest versions of samba (>=4.15.0) calling 'net ads lookup'\n  with '-U%' fails; (boo#1193533).\n- yast-samba-client fails to join if /etc/samba/smb.conf or\n  /etc/krb5.conf don't exist; (bsc#1089938)\n- Do not stop nmbd while nmbstatus is running, it is not necessary\n  anymore; (bsc#1158916);\n\n",null,[],[],[],[14,16,18,20,22,24,26],{"_key":15},"CVE-2020-25721",{"_key":17},"CVE-2020-29361",{"_key":19},"CVE-2021-20316",{"_key":21},"CVE-2021-43566",{"_key":23},"CVE-2021-44141",{"_key":25},"CVE-2021-44142",{"_key":27},"CVE-2022-0336",[],[],[31,32,33,34,35,36,37],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},"2022-02-14T09:58:21Z","2026-02-04T03:29:44.170034Z",{"cisa_kev":41,"cisa_ransomware":41,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[43,49,54,58,62,66,70,74,78,82,86,90,94,98,103,107,111,115,119,123],{"url":44,"sources":45,"tags":47},"https://www.suse.com/support/update/announcement/2022/suse-su-20220323-1/",[46],"osv_suse",[48],"Advisory",{"url":50,"sources":51,"tags":52},"https://bugzilla.suse.com/1089938",[46],[53],"REPORT",{"url":55,"sources":56,"tags":57},"https://bugzilla.suse.com/1139519",[46],[53],{"url":59,"sources":60,"tags":61},"https://bugzilla.suse.com/1158916",[46],[53],{"url":63,"sources":64,"tags":65},"https://bugzilla.suse.com/1180064",[46],[53],{"url":67,"sources":68,"tags":69},"https://bugzilla.suse.com/1182058",[46],[53],{"url":71,"sources":72,"tags":73},"https://bugzilla.suse.com/1191227",[46],[53],{"url":75,"sources":76,"tags":77},"https://bugzilla.suse.com/1192505",[46],[53],{"url":79,"sources":80,"tags":81},"https://bugzilla.suse.com/1192684",[46],[53],{"url":83,"sources":84,"tags":85},"https://bugzilla.suse.com/1193533",[46],[53],{"url":87,"sources":88,"tags":89},"https://bugzilla.suse.com/1193690",[46],[53],{"url":91,"sources":92,"tags":93},"https://bugzilla.suse.com/1194859",[46],[53],{"url":95,"sources":96,"tags":97},"https://bugzilla.suse.com/1195048",[46],[53],{"url":99,"sources":100,"tags":101},"https://www.suse.com/security/cve/CVE-2020-25721",[46],[102],"WEB",{"url":104,"sources":105,"tags":106},"https://www.suse.com/security/cve/CVE-2020-29361",[46],[102],{"url":108,"sources":109,"tags":110},"https://www.suse.com/security/cve/CVE-2021-20316",[46],[102],{"url":112,"sources":113,"tags":114},"https://www.suse.com/security/cve/CVE-2021-43566",[46],[102],{"url":116,"sources":117,"tags":118},"https://www.suse.com/security/cve/CVE-2021-44141",[46],[102],{"url":120,"sources":121,"tags":122},"https://www.suse.com/security/cve/CVE-2021-44142",[46],[102],{"url":124,"sources":125,"tags":126},"https://www.suse.com/security/cve/CVE-2022-0336",[46],[102],[],[],[],[131,144,148,152,159,163,170,174,181,185,192,196,200,207,211,215,219,226,230,234,241],{"ecosystem":132,"name":133,"vendor":134,"product":135,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":135,"source":9,"versions":137},"SUSE Linux Enterprise","apparmor","suse","apparmor&distro=SUSE Linux Enterprise Server 12 SP5","rpm",[138],{"version":139,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":142,"version_end_type":143,"fixed_in":9},"lt2_8_2_56_6_3",true,"ecosystem","2.8.2-56.6.3","excluding",{"ecosystem":132,"name":133,"vendor":134,"product":145,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":145,"source":9,"versions":146},"apparmor&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5",[147],{"version":139,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":142,"version_end_type":143,"fixed_in":9},{"ecosystem":132,"name":133,"vendor":134,"product":149,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":149,"source":9,"versions":150},"apparmor&distro=SUSE Linux Enterprise Software Development Kit 12 SP5",[151],{"version":139,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":142,"version_end_type":143,"fixed_in":9},{"ecosystem":132,"name":153,"vendor":134,"product":154,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":154,"source":9,"versions":155},"ca-certificates","ca-certificates&distro=SUSE Linux Enterprise Server 12 SP5",[156],{"version":157,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":158,"version_end_type":143,"fixed_in":9},"lt1_201403302107_15_3_3","1_201403302107-15.3.3",{"ecosystem":132,"name":153,"vendor":134,"product":160,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":160,"source":9,"versions":161},"ca-certificates&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5",[162],{"version":157,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":158,"version_end_type":143,"fixed_in":9},{"ecosystem":132,"name":164,"vendor":134,"product":165,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":165,"source":9,"versions":166},"gnutls","gnutls&distro=SUSE Linux Enterprise Server 12 SP5",[167],{"version":168,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":169,"version_end_type":143,"fixed_in":9},"lt3_4_17_8_4_1","3.4.17-8.4.1",{"ecosystem":132,"name":164,"vendor":134,"product":171,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":171,"source":9,"versions":172},"gnutls&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5",[173],{"version":168,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":169,"version_end_type":143,"fixed_in":9},{"ecosystem":132,"name":175,"vendor":134,"product":176,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":176,"source":9,"versions":177},"libnettle","libnettle&distro=SUSE Linux Enterprise Server 12 SP5",[178],{"version":179,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":180,"version_end_type":143,"fixed_in":9},"lt3_1_21_3_2","3.1-21.3.2",{"ecosystem":132,"name":175,"vendor":134,"product":182,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":182,"source":9,"versions":183},"libnettle&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5",[184],{"version":179,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":180,"version_end_type":143,"fixed_in":9},{"ecosystem":132,"name":186,"vendor":134,"product":187,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":187,"source":9,"versions":188},"p11-kit","p11-kit&distro=SUSE Linux Enterprise Server 12 SP5",[189],{"version":190,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":191,"version_end_type":143,"fixed_in":9},"lt0_23_2_8_3_2","0.23.2-8.3.2",{"ecosystem":132,"name":186,"vendor":134,"product":193,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":193,"source":9,"versions":194},"p11-kit&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5",[195],{"version":190,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":191,"version_end_type":143,"fixed_in":9},{"ecosystem":132,"name":186,"vendor":134,"product":197,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":197,"source":9,"versions":198},"p11-kit&distro=SUSE Linux Enterprise Software Development Kit 12 SP5",[199],{"version":190,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":191,"version_end_type":143,"fixed_in":9},{"ecosystem":132,"name":201,"vendor":134,"product":202,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":202,"source":9,"versions":203},"samba","samba&distro=SUSE Linux Enterprise High Availability Extension 12 SP5",[204],{"version":205,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":206,"version_end_type":143,"fixed_in":9},"lt4_15_4+git_324_8332acf1a63_3_54_1","4.15.4+git.324.8332acf1a63-3.54.1",{"ecosystem":132,"name":201,"vendor":134,"product":208,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":208,"source":9,"versions":209},"samba&distro=SUSE Linux Enterprise Server 12 SP5",[210],{"version":205,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":206,"version_end_type":143,"fixed_in":9},{"ecosystem":132,"name":201,"vendor":134,"product":212,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":212,"source":9,"versions":213},"samba&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5",[214],{"version":205,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":206,"version_end_type":143,"fixed_in":9},{"ecosystem":132,"name":201,"vendor":134,"product":216,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":216,"source":9,"versions":217},"samba&distro=SUSE Linux Enterprise Software Development Kit 12 SP5",[218],{"version":205,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":206,"version_end_type":143,"fixed_in":9},{"ecosystem":132,"name":220,"vendor":134,"product":221,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":221,"source":9,"versions":222},"sssd","sssd&distro=SUSE Linux Enterprise Server 12 SP5",[223],{"version":224,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":225,"version_end_type":143,"fixed_in":9},"lt1_16_1_7_28_9","1.16.1-7.28.9",{"ecosystem":132,"name":220,"vendor":134,"product":227,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":227,"source":9,"versions":228},"sssd&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5",[229],{"version":224,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":225,"version_end_type":143,"fixed_in":9},{"ecosystem":132,"name":220,"vendor":134,"product":231,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":231,"source":9,"versions":232},"sssd&distro=SUSE Linux Enterprise Software Development Kit 12 SP5",[233],{"version":224,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":225,"version_end_type":143,"fixed_in":9},{"ecosystem":132,"name":235,"vendor":134,"product":236,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":236,"source":9,"versions":237},"yast2-samba-client","yast2-samba-client&distro=SUSE Linux Enterprise Server 12 SP5",[238],{"version":239,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":240,"version_end_type":143,"fixed_in":9},"lt3_1_23_3_3_1","3.1.23-3.3.1",{"ecosystem":132,"name":235,"vendor":134,"product":242,"cpe_part":9,"purl_type":136,"purl_namespace":134,"purl_name":242,"source":9,"versions":243},"yast2-samba-client&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5",[244],{"version":239,"is_range":140,"range_type":141,"version_start":9,"version_start_type":9,"version_end":240,"version_end_type":143,"fixed_in":9}]