14 matches found
[slackware-security] samba
New samba packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/samba-4.18.5-i586-1slack15.0.txz: Upgraded. PLEASE NOTE: We are taking the unusual step of moving to the latest Samba branch because...
Samba 4.17.x < 4.17.7 / 4.18.x < 4.18.1 Incomplete Access Check
The version of Samba running on the remote host is potentially affected by a vulnerability. A flaw was found in Samba. An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory. Note that Nessus has no...
Scientific Linux Security Update : samba on SL7.x x86_64 (20190806)
The following packages have been upgraded to a later upstream version: samba 4.9.1. Security Fixes : - samba: save registry file outside share as unprivileged user CVE-2019-3880 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description...
RedHat Security Advisory RHSA-2009:1585
The remote host is missing updates announced in advisory RHSA-2009:1585. Samba is a suite of programs used by machines to share files, printers, and other information. These samba3x packages provide Samba 3.3, which is a Technology Preview for Red Hat Enterprise Linux 5. These packages cannot be...
Samba call_trans2open buffer overflow
Added: 06/02/2006 CVE: CVE-2003-0201 BID: 7294 OSVDB: 4469 Background Samba is a software package which implements the SMB protocol on a variety of platforms, providing compatibility with Windows systems. Problem A buffer overflow in the calltrans2open function allows anonymous remote attackers t...
In RedHat 9 on the overflow to obtain root demo-vulnerability warning-the black bar safety net
From recently to be black Server security analysis point of view, I find the user elevated permissions tool. He is using a Samba security vulnerability upgrade in order to ROOT. These days the server because you want to put to the public test, this time also installed a Samba server. The results ...
Important: Red Hat Security Advisory: samba security update
Updated samba packages that fix various security vulnerabilities are now available. Samba provides file and printer sharing services to SMB/CIFS clients. During a code audit, Stefan Esser discovered a buffer overflow in Samba versions prior to 3.0.8 when handling unicode filenames. An authenticat...
RHEL 2.1 : samba (RHSA-2004:498)
Updated samba packages that fix an input validation vulnerability are now available. Samba provides file and printer sharing services to SMB/CIFS clients. Karol Wiesek discovered an input validation issue in Samba prior to 3.0.6. An authenticated user could send a carefully crafted request to the...
Fedora Core 1 : samba-3.0.6-2.FC1 (2004-284)
Wed Aug 25 2004 Jay Fenlason 3.0.6-1.FC2 - Upgrade to 3.0.6 include the following patches: samba-3.0.5rc1-passwd.patch from me. This changes the character used in the password field of the entries generated by winbind from a 'x' to a ''. 'x' means something special 'password is in /etc/shadow' to...
Moderate: Red Hat Security Advisory: samba security update
Updated samba packages that fix a buffer overflow issue are now available. Samba provides file and printer sharing services to SMB/CIFS clients. The Samba team discovered a buffer overflow in the code used to support the 'mangling method = hash' smb.conf option. The Common Vulnerabilities and...
RHEL 2.1 : samba (RHSA-2004:404)
Updated samba packages that fix a buffer overflow issue are now available. Samba provides file and printer sharing services to SMB/CIFS clients. The Samba team discovered a buffer overflow in the code used to support the 'mangling method = hash' smb.conf option. The Common Vulnerabilities and...
Critical: Red Hat Security Advisory: : New samba packages fix security vulnerability
Updated Samba packages that fix a security vulnerability are now available. Updated 9 April 2003 Fixed Samba packages for Red Hat Linux 7.1 have been added to this erratum. Samba is a suite of utilities which provide file and printer sharing services to SMB/CIFS clients. A security vulnerability...
Samba buffer overflow fixed
The samba packages in Slackware 8.1 and -current have been patched to fix a security problem. All sites running samba should upgrade. Here are the details from the Slackware 8.1 ChangeLog: Sat Mar 15 13:49:04 PST 2003 patches/packages/samba-2.2.8-i386-1.tgz: Upgraded to Samba 2.2.8. From the Samb...
[SECURITY] New version of samba released
The version of samba as distributed in Debian GNU/Linux 2.1 has a couple of security problems: a Denial-of-Service attack against nmbd was possible it was possible to exploit smbd if you had a message command defined which used the %f or %M formatter. smbmnts check to see if a user is allowed to...