Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Patch For SAMBA.
Operating Systems HP-UX Patch For SAMBA. Post 302631295 by vbe on Friday 27th of April 2012 07:42:48 AM
Old 04-27-2012
Does not look very HP to me...
HP suggested yesterday to update CIFS/SAMBA:
Quote:
VULNERABILITY SUMMARY

Potential security vulnerabilities have been identified with HP-UX CIFS-Server (Samba). The vulnerabilities could be exploited remotely to create a cross site request forgery (CSRF) or create a Denial of Service (DoS).

References: CVE-2011-2522
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.

HP-UX B.11.11, B.11.23, B.11.31 running HP-UX CIFS-Server (Samba) A.02.04.04 or earlier
HP-UX B.11.23, B.11.31 running HP-UX CIFS-Server (Samba) A.03.01.03 or earlier
Code:
RESOLUTION
HP has provided the following software updates to resolve the vulnerabilities.
The updates are available for download from http://software.hp.com

HP-UX CIFS-Server (Samba)
	
HP-UX Release
	
Apache Depot name
A.02.04.05
	
11i v1
	
HP-UX_11.11_B8725AA_A.02.04.05_HP-UX_B.11.11_32_64.depot
11i v2
	
HP-UX_11.23_B8725AA_A.02.04.05_HP-UX_B.11.23_IA_PA.depot
11i v3
	
HP-UX_11.31_CIFS-SERVER_A.02.04.05_HP-UX_B.11.31_IA_PA.depot
A.03.01.04
	
11i v2
	
HP-UX_11.23_B8725AA_A.03.01.04_HP-UX_B.11.23_IA_PA.depot
11i v3
	
HP-UX_11.31_CIFS-SERVER_A.03.01.04_HP-UX_B.11.31_IA_PA.depot


MANUAL ACTIONS: Yes - Update
Install HP-UX CIFS-Server (Samba) A.03.01.04 or subsequent.
Install HP-UX CIFS-Server (Samba) A.02.04.05 or subsequent.

source:
http://h20000.www2.hp.com/bizsupport...critical_012_0
 

8 More Discussions You Might Find Interesting

1. HP-UX

OS Patch

Hello, I have to apply the patch PHSS_24302 on HPUX B.11.11 os version. When i look at the /var/adm/sw/swagentd.log it mentions that "this is not a valid depot". I downloaded the patch from HP web site. Please get back to me at the earliest as I'm dead in the water. Thanks, Balaji K (3 Replies)
Discussion started by: bkrish
3 Replies

2. Shell Programming and Scripting

patch

Dear Guys , I use Linux Red Hat 9 .. i installed a patch for a web mail i use , and i think it make a damage for my web mail i cannot see it anymore . i get so many error messages . what i want to ask is there any command on linux i can use to remove the patch !!! i want to remove the... (1 Reply)
Discussion started by: tamemi
1 Replies

3. UNIX for Dummies Questions & Answers

patch

Dear All , I have Sun Solaries 7 sparc server ... am runing perl , CGI , MD5 ... etc for new web mail am setting up . now i have to install the patch ( xyz.pl.patch ) against a perl file for ex. xxx.pl what exact command i have to use ,,, also i do not want to make damage for my system... (6 Replies)
Discussion started by: tamemi
6 Replies

4. IP Networking

Patch-o-matic (patch for iptable) for linux2.4.08 & iptable1.2.7a

Hello friends I'm running Redhat 9.0 with linux kernel 2.4.20-8 & have iptables version 1.2.7a & encountering a problem that I narrate down. I need to apply patch to my iptable and netfilter for connection tracking and load balancing that are available in patch-o-matic distribution by netfilter.... (0 Replies)
Discussion started by: Rakesh Ranjan
0 Replies

5. Solaris

Patch help?

Hello... I'm looking for latest patch for automount and what it does on Solaris8, Thanks! :confused: (2 Replies)
Discussion started by: catwomen
2 Replies

6. Solaris

samba issue: one samba share without password prompting and the others with.

Hi All, I've been trying to configure samba on Solaris 10 to allow me to have one share that is open and writable to all users and have the rest of my shares password protected by a generic account. If I set my security to user, my secured shares work just fine and prompt accordingly, but when... (0 Replies)
Discussion started by: ideal2545
0 Replies

7. Cybersecurity

Need patch policy help

I'm working on developing a patch policy for a mid-size and quickly growing company. Patches have been at the bottom of the totem pole for years. I possess the ability and care enough to straighten it out. However I'd like some others input on the best way to handle the patch policy. From when... (1 Reply)
Discussion started by: jlouki01
1 Replies

8. Debian

Applying patch for Samba version 4.1.17

The version of Samba in our billing server is 4.1.17-Debian. I have been reminded by our management to implement the patch for Samba on this server. However, I am not sure how to implement the patch. I have browsed some websites for the correct patch to implement for Samba 4.1.17, and the patch... (11 Replies)
Discussion started by: anaigini45
11 Replies

LEARN ABOUT HPUX

update-ux

update-ux(1M)															     update-ux(1M)

NAME

       update-ux - updates the HP-UX operating system from new HP-UX media

SYNOPSIS

       option=value] software_file] [[sw_selections]...]

DESCRIPTION

       The command updates the HP-UX operating system to a newer version.

       Use  when  updating the operating system (OS), and installing or changing operating environments (OEs).	works only with source depots con-
       taining the OS and OEs such as HP-UX 11i OE DVDs.  When using other non-OE media as the source (such as AR), use swinstall(1M) instead.

       will always attempt to update the OS.  In order to update a system successfully, an Operating Environment must exist in the source.  A bun-
       dle  name  does not need to be specified on the command line.  By default, update-ux will install the software from the source that matches
       and updates the software that is installed on the system.  However, if a system does not contain a previous version of an OE, one  must	be
       specified on the command line or in the interactive Terminal User Interface (TUI).

       If the current OS is 11.11 or 11.22 , first install onto the existing system.  For example:

	      source_location

       where source_location is the path to a depot containing the 11i Update-UX product.

   Options
       supports these options:

	      Perform the OE update in the interactive terminal user interface (TUI).  For
				  more information, see the swm(1M) manpage.

	      Previews an update task by running the session through the analysis phase only.

	      Turns on verbose output to stdout.  (The
				  logfile is not affected by this option).

	      Specify the source location.  Possible locations are a local
				  directory,  a mounted DVD containing an SD depot, or a remote machine and depot combination.	If source_location
				  is a DVD, expects to install from one DVD.  If source_location is a remote machine and  depot  combination,  the
				  remote  machine  should  be  specified  first, followed by the absolute path to the remote depot, separated by a
				  colon with no spaces; for example:

	      Print the usage statement.

	      Set		  swm(1M) options.

	      Read the list of	  sw_selections from software_file instead of (or in addition to) the command line.

	      sw_selections	  Software selections support the same syntax as the SD commands plus the syntax  outlined  in	below  (see  swin-
				  stall(1M) for details on SD's supported syntax).

   Software Selections
       In addition to the SD syntax, the following syntax is supported for

	      pattern-matching-expression

       Where version can be:

       Where op can be:

	      or

       The (equals) relational operator lets you specify selections with the shell wildcard and pattern-matching-expressions:

       The syntax causes that selection to be deselected even if it was listed on the command line as part of other selections.

RETURN VALUE

       The command returns a value when it is not successful:

	      Error during execution; update aborted.

DIAGNOSTICS

   Standard Output:
       An session writes messages for significant events, including:

	      o  Begin-session and end-session messages.
	      o  Major task messages.

   Logging:
       Errors are recorded in: and

EXAMPLES

       To update from the OE depot on an HP-UX 11i OE DVD mounted at enter:

	      The example above updates the HP-UX 11i Operating Environment (OE).

       To install all bundles and products in sw_server that match and update software that is installed on the system:

	      Which is equivalent to:

	      The syntax selects all software in the source that matches what is already installed on the system.

       To select only software in HPUX11i-OE that matches the software on the target system:

	      The syntax selects only software in the specified bundle that matches what is already installed on the system.

       To update to HPUX11i-OE and include the HP-UX Bastille Security Configuration bundle:

       To interactively select software for an update, use the option:

       To update the operating environment (OE), explicitly to the MCOE:

       To update all the software that is part of the OE except Mozilla:

       To select all of HPUX11i-OE except for Perl, which is part of HPUX11i-OE, you could specify the following:

	      The  only exception to this is if the selection is in the Operating Environment's required contents list, in which case it cannot be
	      deselected without deselecting all of the Operating Environment.	Note that deselections have precedence over selections.  Thus  the
	      order is not important.  The example above would be the same as the following command:

AUTHOR

       was developed by HP.

FILES

       The command.

       The    log file.

       The    log file.

SEE ALSO

       swm(1M), swinstall(1M).

       These manuals are available on the HP-UX 11i Instant Information CD and at

       o
       o
       o
       o

																     update-ux(1M)
All times are GMT -4. The time now is 01:45 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy