Ubuntu Update for samba regression USN-617-2

Ubuntu Update for Samba regression fixing Samba vulnerabilitie

Reporter	Title	Published	Views	Family All 293
Tenable Nessus	Samba < 3.0.27 Multiple Vulnerabilities	15 Nov 200700:00	–	nessus
Tenable Nessus	Samba < 3.0.30 'receive_smb_raw' Buffer Overflow Vulnerability	29 May 200800:00	–	nessus
Tenable Nessus	Mac OS X < 10.5.4 Multiple Vulnerabilities	18 Aug 200400:00	–	nessus
Tenable Nessus	CentOS 3 : samba (CESA-2007:1013)	23 Apr 200900:00	–	nessus
Tenable Nessus	CentOS 4 : samba (CESA-2007:1016)	29 Jun 201300:00	–	nessus
Tenable Nessus	CentOS 3 / 4 / 5 : samba (CESA-2007:1114)	11 Dec 200700:00	–	nessus
Tenable Nessus	CentOS 3 / 4 : samba (CESA-2008:0288)	29 May 200800:00	–	nessus
Tenable Nessus	CentOS 5 : samba (CESA-2008:0290)	6 Jan 201000:00	–	nessus
Tenable Nessus	Debian DSA-1409-3 : samba - several vulnerabilities	26 Nov 200700:00	–	nessus
Tenable Nessus	Debian DSA-1590-1 : samba - buffer overflow	2 Jun 200800:00	–	nessus

Source	Link
ubuntu	www.ubuntu.com/usn/usn-617-2/

###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_ubuntu_USN_617_2.nasl 7969 2017-12-01 09:23:16Z santu $
#
# Ubuntu Update for samba regression USN-617-2
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");
tag_insight = "USN-617-1 fixed vulnerabilities in Samba. The upstream patch
  introduced a regression where under certain circumstances accessing
  large files might cause the client to report an invalid packet
  length error. This update fixes the problem.

  We apologize for the inconvenience.
  
  Original advisory details:
  
  Samba developers discovered that nmbd could be made to overrun
  a buffer during the processing of GETDC logon server requests.
  When samba is configured as a Primary or Backup Domain Controller,
  a remote attacker could send malicious logon requests and possibly
  cause a denial of service. (CVE-2007-4572)
  
  Alin Rad Pop of Secunia Research discovered that Samba did not
  properly perform bounds checking when parsing SMB replies. A remote
  attacker could send crafted SMB packets and execute arbitrary code.
  (CVE-2008-1105)";

tag_summary = "Ubuntu Update for Linux kernel vulnerabilities USN-617-2";
tag_affected = "samba regression on Ubuntu 6.06 LTS ,
  Ubuntu 7.04 ,
  Ubuntu 7.10 ,
  Ubuntu 8.04 LTS";
tag_solution = "Please Install the Updated Packages.";



if(description)
{
  script_xref(name: "URL" , value: "http://www.ubuntu.com/usn/usn-617-2/");
  script_id(840293);
  script_version("$Revision: 7969 $");
  script_tag(name:"last_modification", value:"$Date: 2017-12-01 10:23:16 +0100 (Fri, 01 Dec 2017) $");
  script_tag(name:"creation_date", value:"2009-03-23 10:59:50 +0100 (Mon, 23 Mar 2009)");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_xref(name: "USN", value: "617-2");
  script_cve_id("CVE-2008-1105", "CVE-2007-4572");
  script_name( "Ubuntu Update for samba regression USN-617-2");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2009 Greenbone Networks GmbH");
  script_family("Ubuntu Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages");
  script_tag(name : "summary" , value : tag_summary);
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("pkg-lib-deb.inc");

release = get_kb_item("ssh/login/release");


res = "";
if(release == NULL){
  exit(0);
}

if(release == "UBUNTU6.06 LTS")
{

  if ((res = isdpkgvuln(pkg:"libpam-smbpass", ver:"3.0.22-1ubuntu3.8", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libsmbclient-dev", ver:"3.0.22-1ubuntu3.8", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libsmbclient", ver:"3.0.22-1ubuntu3.8", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"python2.4-samba", ver:"3.0.22-1ubuntu3.8", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-common", ver:"3.0.22-1ubuntu3.8", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-dbg", ver:"3.0.22-1ubuntu3.8", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba", ver:"3.0.22-1ubuntu3.8", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"smbclient", ver:"3.0.22-1ubuntu3.8", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"smbfs", ver:"3.0.22-1ubuntu3.8", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"swat", ver:"3.0.22-1ubuntu3.8", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"winbind", ver:"3.0.22-1ubuntu3.8", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-doc-pdf", ver:"3.0.22-1ubuntu3.8", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-doc", ver:"3.0.22-1ubuntu3.8", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "UBUNTU7.04")
{

  if ((res = isdpkgvuln(pkg:"libpam-smbpass", ver:"3.0.24-2ubuntu1.7", rls:"UBUNTU7.04")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libsmbclient-dev", ver:"3.0.24-2ubuntu1.7", rls:"UBUNTU7.04")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libsmbclient", ver:"3.0.24-2ubuntu1.7", rls:"UBUNTU7.04")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"python-samba", ver:"3.0.24-2ubuntu1.7", rls:"UBUNTU7.04")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-common", ver:"3.0.24-2ubuntu1.7", rls:"UBUNTU7.04")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-dbg", ver:"3.0.24-2ubuntu1.7", rls:"UBUNTU7.04")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba", ver:"3.0.24-2ubuntu1.7", rls:"UBUNTU7.04")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"smbclient", ver:"3.0.24-2ubuntu1.7", rls:"UBUNTU7.04")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"smbfs", ver:"3.0.24-2ubuntu1.7", rls:"UBUNTU7.04")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"swat", ver:"3.0.24-2ubuntu1.7", rls:"UBUNTU7.04")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"winbind", ver:"3.0.24-2ubuntu1.7", rls:"UBUNTU7.04")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-doc-pdf", ver:"3.0.24-2ubuntu1.7", rls:"UBUNTU7.04")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-doc", ver:"3.0.24-2ubuntu1.7", rls:"UBUNTU7.04")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "UBUNTU8.04 LTS")
{

  if ((res = isdpkgvuln(pkg:"libpam-smbpass", ver:"3.0.28a-1ubuntu4.4", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libsmbclient-dev", ver:"3.0.28a-1ubuntu4.4", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libsmbclient", ver:"3.0.28a-1ubuntu4.4", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-common", ver:"3.0.28a-1ubuntu4.4", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-dbg", ver:"3.0.28a-1ubuntu4.4", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba", ver:"3.0.28a-1ubuntu4.4", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"smbclient", ver:"3.0.28a-1ubuntu4.4", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"smbfs", ver:"3.0.28a-1ubuntu4.4", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"swat", ver:"3.0.28a-1ubuntu4.4", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"winbind", ver:"3.0.28a-1ubuntu4.4", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-doc-pdf", ver:"3.0.28a-1ubuntu4.4", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-doc", ver:"3.0.28a-1ubuntu4.4", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "UBUNTU7.10")
{

  if ((res = isdpkgvuln(pkg:"libpam-smbpass", ver:"3.0.26a-1ubuntu2.5", rls:"UBUNTU7.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libsmbclient-dev", ver:"3.0.26a-1ubuntu2.5", rls:"UBUNTU7.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libsmbclient", ver:"3.0.26a-1ubuntu2.5", rls:"UBUNTU7.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-common", ver:"3.0.26a-1ubuntu2.5", rls:"UBUNTU7.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-dbg", ver:"3.0.26a-1ubuntu2.5", rls:"UBUNTU7.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba", ver:"3.0.26a-1ubuntu2.5", rls:"UBUNTU7.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"smbclient", ver:"3.0.26a-1ubuntu2.5", rls:"UBUNTU7.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"smbfs", ver:"3.0.26a-1ubuntu2.5", rls:"UBUNTU7.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"swat", ver:"3.0.26a-1ubuntu2.5", rls:"UBUNTU7.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"winbind", ver:"3.0.26a-1ubuntu2.5", rls:"UBUNTU7.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-doc-pdf", ver:"3.0.26a-1ubuntu2.5", rls:"UBUNTU7.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"samba-doc", ver:"3.0.26a-1ubuntu2.5", rls:"UBUNTU7.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

01 Dec 2017 00:00Current

0.1Low risk

Vulners AI Score0.1

EPSS0.85727