Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
centosCentOS ProjectCESA-2010:0698
HistorySep 15, 2010 - 10:42 p.m.

libtalloc, libtdb, samba3x, tdb security update

2010-09-1522:42:24
CentOS Project
lists.centos.org
56

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.915 High

EPSS

Percentile

98.9%

JSON

CentOS Errata and Security Advisory CESA-2010:0698

Samba is a suite of programs used by machines to share files, printers, and
other information.

A missing array boundary checking flaw was found in the way Samba parsed
the binary representation of Windows security identifiers (SIDs). A
malicious client could send a specially-crafted SMB request to the Samba
server, resulting in arbitrary code execution with the privileges of the
Samba server (smbd). (CVE-2010-3069)

Users of Samba are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue. After installing this
update, the smb service will be restarted automatically.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2010-September/079166.html
https://lists.centos.org/pipermail/centos-announce/2010-September/079167.html

Affected packages:
libtalloc
libtalloc-devel
libtdb
libtdb-devel
samba3x
samba3x-client
samba3x-common
samba3x-doc
samba3x-domainjoin-gui
samba3x-swat
samba3x-winbind
samba3x-winbind-devel
tdb-tools

Upstream details at:
https://access.redhat.com/errata/RHSA-2010:0698

OSVersionArchitecturePackageVersionFilename
CentOS5i386libtalloc< 1.2.0-52.el5_5.2libtalloc-1.2.0-52.el5_5.2.i386.rpm
CentOS5i386libtalloc-devel< 1.2.0-52.el5_5.2libtalloc-devel-1.2.0-52.el5_5.2.i386.rpm
CentOS5i386libtdb< 1.1.2-52.el5_5.2libtdb-1.1.2-52.el5_5.2.i386.rpm
CentOS5i386libtdb-devel< 1.1.2-52.el5_5.2libtdb-devel-1.1.2-52.el5_5.2.i386.rpm
CentOS5i386samba3x< 3.3.8-0.52.el5_5.2samba3x-3.3.8-0.52.el5_5.2.i386.rpm
CentOS5i386samba3x-client< 3.3.8-0.52.el5_5.2samba3x-client-3.3.8-0.52.el5_5.2.i386.rpm
CentOS5i386samba3x-common< 3.3.8-0.52.el5_5.2samba3x-common-3.3.8-0.52.el5_5.2.i386.rpm
CentOS5i386samba3x-doc< 3.3.8-0.52.el5_5.2samba3x-doc-3.3.8-0.52.el5_5.2.i386.rpm
CentOS5i386samba3x-domainjoin-gui< 3.3.8-0.52.el5_5.2samba3x-domainjoin-gui-3.3.8-0.52.el5_5.2.i386.rpm
CentOS5i386samba3x-swat< 3.3.8-0.52.el5_5.2samba3x-swat-3.3.8-0.52.el5_5.2.i386.rpm
Rows per page:
1-10 of 321

Related

openvas 39
nessus 33
fedora 4
oraclelinux 4
ubuntucve 1
centos 1
debiancve 1
samba 1
checkpoint_advisories 1
osv 1
debian 4
securityvulns 6
altlinux 2
redhat 3
cve 1
prion 1
ubuntu 1
slackware 1
veracode 1
vmware 2
suse 1
gentoo 1
openvas
openvas
Fedora Update for samba FEDORA-2010-14627
2010-09-22 00:00:00
Slackware Advisory SSA:2010-257-01 samba
2012-09-11 00:00:00
CentOS Update for samba CESA-2010:0697 centos3 i386
2010-09-22 00:00:00
nessus
nessus
Scientific Linux Security Update : samba3x on SL5.x i386/x86_64
2012-08-01 00:00:00
Mandriva Linux Security Advisory : samba (MDVSA-2010:184)
2010-09-17 00:00:00
Solaris 10 (x86) : 146364-01
2018-03-12 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: samba-3.5.5-68.fc13
2010-09-15 05:22:12
[SECURITY] Fedora 14 Update: samba-3.5.5-68.fc14
2010-09-15 07:09:26
[SECURITY] Fedora 13 Update: samba-3.5.8-74.fc13
2011-03-19 10:27:41
oraclelinux
oraclelinux
samba security and bug fix update
2010-09-14 00:00:00
samba3x security update
2010-09-15 00:00:00
samba security update
2011-02-10 00:00:00
ubuntucve
ubuntucve
CVE-2010-3069
2010-09-14 00:00:00
centos
centos
libsmbclient, samba security update
2010-09-15 13:23:12
debiancve
debiancve
CVE-2010-3069
2010-09-15 18:00:00
samba
samba
Buffer Overrun Vulnerability
2010-09-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Samba SID Parsing Stack Buffer Overflow (CVE-2010-3069)
2010-11-15 00:00:00
osv
osv
samba - buffer overflow
2010-09-16 00:00:00
debian
debian
BSA-003 Security Update for samba
2010-09-30 09:38:45
[SECURITY] [DSA-2109-1] New samba packages fix buffer overflow
2010-09-16 16:56:00
[SECURITY] [DSA-2109-1] New samba packages fix buffer overflow
2010-09-16 16:56:00
securityvulns
securityvulns
SAMBA buffer overflow
2010-09-16 00:00:00
[USN-987-1] Samba vulnerability
2010-09-16 00:00:00
About the security content of Mac OS X v10.6.8 and Security Update 2011-004
2011-07-04 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package samba version 3.5.5-alt1
2010-09-14 00:00:00
Security fix for the ALT Linux 5 package samba version 3.0.37-alt3.M50P.1
2010-09-13 00:00:00
redhat
redhat
(RHSA-2010:0697) Critical: samba security and bug fix update
2010-09-14 00:00:00
(RHSA-2010:0860) Critical: samba security update
2010-11-10 00:00:00
(RHSA-2010:0698) Critical: samba3x security update
2010-09-14 00:00:00
cve
cve
CVE-2010-3069
2010-09-15 18:00:00
prion
prion
Stack overflow
2010-09-15 18:00:00
ubuntu
ubuntu
Samba vulnerability
2010-09-14 00:00:00
slackware
slackware
[slackware-security] samba
2010-09-15 03:39:16
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:47:54
vmware
vmware
VMware ESX third party updates for Service Console
2010-12-07 00:00:00
VMware ESX third party updates for Service Console
2010-12-07 00:00:00
suse
suse
Security update for Samba (critical)
2012-03-09 17:08:16
gentoo
gentoo
Samba: Multiple vulnerabilities
2012-06-24 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.915 High

EPSS

Percentile

98.9%

JSON
Related for CESA-2010:0698
openvas39nessus33fedora4oraclelinux4ubuntucve1centos1debiancve1samba1checkpoint_advisories1osv1debian4securityvulns6altlinux2redhat3cve1prion1ubuntu1slackware1veracode1vmware2suse1gentoo1