Security update for Samba (critical)

ID SUSE-SU-2012:0504-1
Type suse
Reporter Suse
Modified 2012-04-14T14:08:17


A remote code execution flaw in Samba has been fixed:

  • CVE-2012-1182: PIDL based autogenerated code uses client supplied size values which allows attackers to write beyond the allocated array size

Also the following bug has been fixed:

  • mount.cifs: Properly update mtab during remount; (bnc#747906).