Allowing all file system access even when permissions should have denied access.

2010-03-08T00:00:00
ID SAMBA:CVE-2010-0728
Type samba
Reporter Samba
Modified 2010-03-08T00:00:00

Description

This flaw caused all smbd processes to inherit CAP_DAC_OVERRIDE capabilities, allowing all file system access to be allowed even when permissions should have denied access. Please note this security problem does not affect any platform that does not support capabilities and platforms where binaries were built without libcap support. Also note that 3.4.5 and prior 3.4.x versions and 3.3.10 and prior 3.3.x versions are NOT affected.