Synopsis:          Moderate: samba4 security update
Advisory ID:       SLSA-2016:0449-1
Issue Date:        2016-03-15
CVE Numbers:       CVE-2015-7560
--

A flaw was found in the way Samba handled ACLs on symbolic links. An
authenticated user could use this flaw to gain access to an arbitrary file
or directory by overwriting its ACL. (CVE-2015-7560)

After installing this update, the smb service will be restarted
automatically.
--

SL6
  x86_64
    samba4-4.0.0-68.el6_7.rc4.x86_64.rpm
    samba4-client-4.0.0-68.el6_7.rc4.x86_64.rpm
    samba4-common-4.0.0-68.el6_7.rc4.x86_64.rpm
    samba4-dc-4.0.0-68.el6_7.rc4.x86_64.rpm
    samba4-dc-libs-4.0.0-68.el6_7.rc4.x86_64.rpm
    samba4-debuginfo-4.0.0-68.el6_7.rc4.x86_64.rpm
    samba4-devel-4.0.0-68.el6_7.rc4.x86_64.rpm
    samba4-libs-4.0.0-68.el6_7.rc4.x86_64.rpm
    samba4-pidl-4.0.0-68.el6_7.rc4.x86_64.rpm
    samba4-python-4.0.0-68.el6_7.rc4.x86_64.rpm
    samba4-swat-4.0.0-68.el6_7.rc4.x86_64.rpm
    samba4-test-4.0.0-68.el6_7.rc4.x86_64.rpm
    samba4-winbind-4.0.0-68.el6_7.rc4.x86_64.rpm
    samba4-winbind-clients-4.0.0-68.el6_7.rc4.x86_64.rpm
    samba4-winbind-krb5-locator-4.0.0-68.el6_7.rc4.x86_64.rpm
  i386
    samba4-4.0.0-68.el6_7.rc4.i686.rpm
    samba4-client-4.0.0-68.el6_7.rc4.i686.rpm
    samba4-common-4.0.0-68.el6_7.rc4.i686.rpm
    samba4-dc-4.0.0-68.el6_7.rc4.i686.rpm
    samba4-dc-libs-4.0.0-68.el6_7.rc4.i686.rpm
    samba4-debuginfo-4.0.0-68.el6_7.rc4.i686.rpm
    samba4-devel-4.0.0-68.el6_7.rc4.i686.rpm
    samba4-libs-4.0.0-68.el6_7.rc4.i686.rpm
    samba4-pidl-4.0.0-68.el6_7.rc4.i686.rpm
    samba4-python-4.0.0-68.el6_7.rc4.i686.rpm
    samba4-swat-4.0.0-68.el6_7.rc4.i686.rpm
    samba4-test-4.0.0-68.el6_7.rc4.i686.rpm
    samba4-winbind-4.0.0-68.el6_7.rc4.i686.rpm
    samba4-winbind-clients-4.0.0-68.el6_7.rc4.i686.rpm
    samba4-winbind-krb5-locator-4.0.0-68.el6_7.rc4.i686.rpm

- Scientific Linux Development Team