samba samba-client samba-server samba-swat Denial of Service

2009.05.09
Credit: rPath
Risk: Medium
Local: No
Remote: Yes
CWE: CWE-362

rPath Security Advisory: 2008-0308-1 Published: 2008-10-30 Products: rPath Appliance Platform Linux Service 1 rPath Appliance Platform Linux Service 2 rPath Linux 1 rPath Linux 2 Rating: Minor Exposure Level Classification: Remote Non-deterministic Denial of Service Updated Versions: samba=conary.rpath.com@rpl:1/3.0.32-0.4-1 samba=conary.rpath.com@rpl:2/3.0.32-1-0.1 samba-client=conary.rpath.com@rpl:1/3.0.32-0.4-1 samba-client=conary.rpath.com@rpl:2/3.0.32-1-0.1 samba-server=conary.rpath.com@rpl:1/3.0.32-0.4-1 samba-server=conary.rpath.com@rpl:2/3.0.32-1-0.1 samba-swat=conary.rpath.com@rpl:1/3.0.32-0.4-1 samba-swat=conary.rpath.com@rpl:2/3.0.32-1-0.1 rPath Issue Tracking System: https://issues.rpath.com/browse/RPL-2766 Description: Previous versions of the samba package contain a race condition which may lead to a crash of the winbindd daemon (Denial of Service). In their default configurations, rPath Linux and the rPath Appliance Platform Linux Service are not vulnerable to this attack. http://wiki.rpath.com/Advisories:rPSA-2008-0308 Copyright 2008 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html

References:

http://www.samba.org/samba/history/samba-3.0.32.html
https://issues.rpath.com/browse/RPL-2766
http://www.securityfocus.com/archive/1/archive/1/497941/100/0/threaded
http://wiki.rpath.com/Advisories:rPSA-2008-0308


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2020, cxsecurity.com

 

Back to Top