(RHSA-2010:0488) Critical: samba and samba3x security update

2010-06-1600:00:00

access.redhat.com

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.973 High

EPSS

Percentile

99.8%

JSON

Samba is a suite of programs used by machines to share files, printers, and
other information.

An input sanitization flaw was found in the way Samba parsed client data. A
malicious client could send a specially-crafted SMB packet to the Samba
server, resulting in arbitrary code execution with the privileges of the
Samba server (smbd). (CVE-2010-2063)

Red Hat would like to thank the Samba team for responsibly reporting this
issue. Upstream acknowledges Jun Mao as the original reporter.

Users of Samba are advised to upgrade to these updated packages, which
contain a backported patch to resolve this issue. After installing this
update, the smb service will be restarted automatically.

OSVersionArchitecturePackageVersionFilename
RedHat4ppc64samba-common< 3.0.33-0.19.el4_8.1samba-common-3.0.33-0.19.el4_8.1.ppc64.rpm
RedHat5ia64samba-common< 3.0.33-3.29.el5_5samba-common-3.0.33-3.29.el5_5.ia64.rpm
RedHat5ia64samba3x-client< 3.3.8-0.52.el5_5samba3x-client-3.3.8-0.52.el5_5.ia64.rpm
RedHat5i386samba3x-winbind-devel< 3.3.8-0.52.el5_5samba3x-winbind-devel-3.3.8-0.52.el5_5.i386.rpm
RedHat5s390samba3x-winbind< 3.3.8-0.52.el5_5samba3x-winbind-3.3.8-0.52.el5_5.s390.rpm
RedHat5ppc64libtdb< 1.1.2-52.el5_5libtdb-1.1.2-52.el5_5.ppc64.rpm
RedHat5s390xlibtdb< 1.1.2-52.el5_5libtdb-1.1.2-52.el5_5.s390x.rpm
RedHat4ia64samba-common< 3.0.28-0.10.el4_7samba-common-3.0.28-0.10.el4_7.ia64.rpm
RedHat5x86_64libtalloc-devel< 1.2.0-52.el5_5libtalloc-devel-1.2.0-52.el5_5.x86_64.rpm
RedHat5i386samba3x-domainjoin-gui< 3.3.8-0.52.el5_5samba3x-domainjoin-gui-3.3.8-0.52.el5_5.i386.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	4	ppc64	samba-common	< 3.0.33-0.19.el4_8.1	samba-common-3.0.33-0.19.el4_8.1.ppc64.rpm
RedHat	5	ia64	samba-common	< 3.0.33-3.29.el5_5	samba-common-3.0.33-3.29.el5_5.ia64.rpm
RedHat	5	ia64	samba3x-client	< 3.3.8-0.52.el5_5	samba3x-client-3.3.8-0.52.el5_5.ia64.rpm
RedHat	5	i386	samba3x-winbind-devel	< 3.3.8-0.52.el5_5	samba3x-winbind-devel-3.3.8-0.52.el5_5.i386.rpm
RedHat	5	s390	samba3x-winbind	< 3.3.8-0.52.el5_5	samba3x-winbind-3.3.8-0.52.el5_5.s390.rpm
RedHat	5	ppc64	libtdb	< 1.1.2-52.el5_5	libtdb-1.1.2-52.el5_5.ppc64.rpm
RedHat	5	s390x	libtdb	< 1.1.2-52.el5_5	libtdb-1.1.2-52.el5_5.s390x.rpm
RedHat	4	ia64	samba-common	< 3.0.28-0.10.el4_7	samba-common-3.0.28-0.10.el4_7.ia64.rpm
RedHat	5	x86_64	libtalloc-devel	< 1.2.0-52.el5_5	libtalloc-devel-1.2.0-52.el5_5.x86_64.rpm
RedHat	5	i386	samba3x-domainjoin-gui	< 3.3.8-0.52.el5_5	samba3x-domainjoin-gui-3.3.8-0.52.el5_5.i386.rpm