|
|
Family: Debian Local Security Checks --> Category: infos
[DSA701] DSA-701-2 samba Vulnerability Scan
Vulnerability Scan Summary
DSA-701-2 samba
Detailed Explanation for this Vulnerability Test
It has been discovered that the last security update for Samba, a
LanManager like file and printer server for GNU/Linux and Unix-like
systems caused the daemon to crash upon reload. This has been fixed.
For reference below is the original advisory text:
Greg MacManus discovered an integer overflow in the smb daemon from
Samba, a LanManager like file and printer server for GNU/Linux and
Unix-like systems. Requesting a very large number of access control
descriptors from the server could exploit the integer overflow, which
may result in a buffer overflow which could lead to the execution of
arbitrary code with root rights. Upstream developers have
discovered more possible integer overflows that are fixed with this
update as well.
For the stable distribution (woody) these problems have been fixed in
version 2.2.3a-15.
For the unstable distribution (sid) these problems have been fixed in
version 3.0.10-1.
We recommend that you upgrade your samba packages.
Solution : http://www.debian.org/security/2005/dsa-701
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
