21 matches found
Fedora Update for samba FEDORA-2015-2519
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CentOS Update for libsmbclient CESA-2014:1008 centos7
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : samba (openSUSE-SU-2014:1040-1)
"This samba update fixes the following security and non security issues : - Fix winbind service parameter usage; bnc890005. - lib/param: change the default for 'winbind expand groups' to '0'; bnc890008. - Update to 4.1.11. + A malicious browser can send packets that may overwrite the heap of the...
Fedora Update for samba FEDORA-2014-9132
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 19 : samba-4.0.21-1.fc19 (2014-9132)
Update to Samba 4.0.21. CVE-2014-3560. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...
Fedora Update for samba FEDORA-2014-9141
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 20 : samba-4.1.9-4.fc20 (2014-9141)
resolves: 1126015 - Fix CVE-2014-3560 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...
CVE-2014-3560
NetBIOS name services daemon nmbd in Samba 4.0.x before 4.0.21 and 4.1.x before 4.1.11 allows remote attackers to execute arbitrary code via unspecified vectors that modify heap memory, involving a sizeof operation on an incorrect variable in the unstrcpy macro in stringwrappers.h...
CVE-2014-3560
NetBIOS name services daemon nmbd in Samba 4.0.x before 4.0.21 and 4.1.x before 4.1.11 allows remote attackers to execute arbitrary code via unspecified vectors that modify heap memory, involving a sizeof operation on an incorrect variable in the unstrcpy macro in stringwrappers.h...
CVE-2014-3560
CVE-2014-3560 affects Samba’s NetBIOS name service daemon (nmbd). The issue lies in a heap-memory corruption caused by a sizeof operation on an incorrect variable in the unstrcpy macro in string_wrappers.h, impacting Samba 4.0.x before 4.0.21 and 4.1.x before 4.1.11. This enables remote code exec...
RedHat Update for samba4 RHSA-2014:1009-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 6 : samba4 (ELSA-2014-1009)
The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2014-1009 advisory. - resolves: 1126011 - CVE-2014-3560: remote code execution in nmbd. - resolves: 1105501 - CVE-2014-0244: DoS in nmbd. - resolves: 1108842 - CVE-2014-3493: DoS i...
RHEL 6 : samba4 (RHSA-2014:1009)
Updated samba4 packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
RHEL 7 : samba (RHSA-2014:1008)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2014:1008 advisory. Samba is an open-source implementation of the Server Message Block SMB or Common Internet File System CIFS protocol, which allows PC-compatible...
Oracle Linux 7 : samba (ELSA-2014-1008)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2014-1008 advisory. - resolves: 1126013 - CVE-2014-3560: remote code execution in nmbd. Tenable has extracted the preceding description block directly from the Oracle Linux securit...
Security fix for the ALT Linux 10 package samba version 4.1.11-alt1
Aug. 5, 2014 Alexey Shabalin 4.1.11-alt1 - 4.1.11 - fixed unstrcpy macro length is invalidCVE-2014-3560...
Security fix for the ALT Linux 8 package samba-DC version 4.1.11-alt1
Aug. 5, 2014 Alexey Shabalin 4.1.11-alt1 - 4.1.11 - fixed unstrcpy macro length is invalidCVE-2014-3560...
[USN-2305-1] Samba vulnerability
========================================================================== Ubuntu Security Notice USN-2305-1 August 01, 2014 samba vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubun...
FreeBSD : samba -- remote code execution (89ff45e3-1a57-11e4-bebd-000c2980a9f3)
Samba developers report : A malicious browser can send packets that may overwrite the heap of the target nmbd NetBIOS name services daemon. It may be possible to use this to generate a remote code execution vulnerability as the superuser root. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
[slackware-security] samba
New samba packages are available for Slackware 14.1 and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/samba-4.1.11-i486-1slack14.1.txz: Upgraded. This update fixes a remote code execution attack on unauthenticated nmbd NetBIOS name...