FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Gentoo > Gentoo User

 
 
LinkBack Thread Tools
 
Old 04-11-2012, 03:56 AM
Paul Hartman
 
Default Heads up, remote root vulnerability discovered in Samba

"Samba versions 3.6.3 and all versions previous to this are affected
by a vulnerability that allows remote code execution as the "root"
user from an anonymous connection."

"As this does not require an authenticated connection it is the most
serious vulnerability possible in a program, and users and vendors are
encouraged to patch their Samba installations immediately."

More info at:
https://www.samba.org/samba/security/CVE-2012-1182
 
Old 04-11-2012, 07:36 PM
Jeff Horelick
 
Default Heads up, remote root vulnerability discovered in Samba

On 10 April 2012 23:56, Paul Hartman <paul.hartman+gentoo@gmail.com> wrote:
> "Samba versions 3.6.3 and all versions previous to this are affected
> by a vulnerability that allows remote code execution as the "root"
> user from an anonymous connection."
>
> "As this does not require an authenticated connection it is the most
> serious vulnerability possible in a program, and users and vendors are
> encouraged to patch their Samba installations immediately."
>
> More info at:
> https://www.samba.org/samba/security/CVE-2012-1182
>

There is already a fixed version (3.5.14) stable on x86, amd64 and
hppa (and obviously ~arch for the other arches) and it should go
stable on those other arches soon and have a GLSA soon as well.
 

Thread Tools




All times are GMT. The time now is 12:16 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org