USN-556-1: Samba vulnerability

12-24-2007

Registered User

26,240, 27

Join Date: Sep 2000

Last Activity: 1 August 2008, 3:09 PM EDT

Posts: 26,240

Thanks Given: 0

Thanked 27 Times in 26 Posts

USN-556-1: Samba vulnerability

Referenced CVEs:
CVE-2007-6015

Description:
=========================================================== Ubuntu Security Notice USN-556-1 December 18, 2007samba vulnerabilityCVE-2007-6015===========================================================A security issue affects the following Ubuntu releases:Ubuntu 6.06 LTSUbuntu 6.10Ubuntu 7.04Ubuntu 7.10This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.The problem can be corrected by upgrading your system to thefollowing package versions:Ubuntu 6.06 LTS: libsmbclient 3.0.22-1ubuntu3.6 samba 3.0.22-1ubuntu3.6Ubuntu 6.10: libsmbclient 3.0.22-1ubuntu4.5 samba 3.0.22-1ubuntu4.5Ubuntu 7.04: libsmbclient 3.0.24-2ubuntu1.5 samba 3.0.24-2ubuntu1.5Ubuntu 7.10: libsmbclient 3.0.26a-1ubuntu2.3 samba 3.0.26a-1ubuntu2.3In general, a standard system upgrade is sufficient to effect thenecessary changes.Details follow:Alin Rad Pop discovered that Samba did not correctly check the sizeof reply packets to mailslot requests. If a server was configuredwith domain logon enabled, an unauthenticated remote attacker could senda specially crafted domain logon packet and execute arbitrary code orcrash the Samba service. By default, domain logon is disabled in Ubuntu.

More...

Linux Bot

View Public Profile for Linux Bot

Find all posts by Linux Bot

GERMINATE-PKG-DIFF(1) Ubuntu General Commands Manual GERMINATE-PKG-DIFF(1) NAME
germinate-pkg-diff -- compare seeds against currently installed packages SYNOPSIS
germinate-pkg-diff [-l file] [-m {i|r|d}] [-a arch] [seeds] DESCRIPTION
germinate-pkg-diff compares the expansion of a list of seed packages against the set of packages installed on the current system. When con- structing seeds for a software distribution, it can be used to iteratively find packages installed on developers' systems that should be included in the seeds. A list of seeds against which to compare may be supplied as non-option arguments. Seeds from which they inherit will be added automatically. The default is 'desktop'. OPTIONS
-l, --list file Read the list of currently installed packages from file. The default is to read the output of dpkg --get-selections, and any supplied file should be in the same format. -m, --mode {i|r|d} Set the output mode as follows: i Show the dpkg selections needed to install just these seeds. List unseeded but installed files as ``deinstall'', and seeded but uninstalled files as ``install''. r List unseeded but installed files as ``install'', and seeded but uninstalled files as ``deinstall''. d Show the differences between the packages specified by the seeds and the list of installed packages, in a somewhat diff-like for- mat. -S, --seed-source source,... Fetch seeds from the specified sources. The default is http://people.canonical.com/~ubuntu-archive/seeds/. -s, --seed-dist dist Fetch seeds for distribution dist. The default is ubuntu.precise. -d, --dist dist,... Operate on the specified distributions. The default is precise. Listing multiple distributions may be useful, for example, when exam- ining both a released distribution and its security updates. -a, --arch arch Operate on architecture arch. The default is i386. BUGS
--mode r is useless as dpkg --set-selections input. AUTHORS
Lamont Jones <lamont@ubuntu.com> Colin Watson <cjwatson@canonical.com> germinate-pkg-diff is copyright (C) 2004, 2005, 2006, 2007, 2008 Canonical Ltd. See the GNU General Public License version 2 or later for copying conditions. A copy of the GNU General Public License is available in /usr/share/common-licenses/GPL. Ubuntu Jul 18, 2007 Ubuntu

Security Advisories (RSS)

USN-556-1: Samba vulnerability

LEARN ABOUT DEBIAN

germinate-pkg-diff