Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

Fedora 8 Update: kernel-2.6.25.6-27.fc8

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) Fedora 8 Update: kernel-2.6.25.6-27.fc8
# 1  
Old 06-20-2008
Fedora 8 Update: kernel-2.6.25.6-27.fc8
LinuxSecurity.com: The asn1 implementation in (a) the Linux kernel 2.4 before 2.4.36.6 and 2.6 before 2.6.25.5, as used in the cifs and ip_nat_snmp_basic modules; and (b) the gxsnmp package; does not properly validate length values during decoding of ASN.1 BER data, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via (1) a length greater than the working buffer, which can lead to an unspecified overflow; (2) an oid length of zero, which can lead to an off-by-one error; or (3) an indefinite length for a primitive encoding.

More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT LINUX

getcifsacl

GETCIFSACL(1)						  CIFS Access Control List Tools					     GETCIFSACL(1)

NAME

       getcifsacl - Userspace helper to display an ACL in a security descriptor for Common Internet File System (CIFS)

SYNOPSIS

       getcifsacl [-v|-r] {file system object}

DESCRIPTION

       This tool is part of the cifs-utils suite.

       getcifsacl is a userspace helper program for the Linux CIFS client file system.	It is intended to display a security descriptor including
       ACL for a file system object.  It is best utilized when an option of cifsacl is specified when mounting a cifs share in conjunction with
       winbind facility of Samba suite.

       Fields of an ACE such as SID, type, flags, and mask are displayed separated by /.  Numeric values of type, flags, and mask are displayed in
       hexadecimal format.

OPTIONS

       -v
	   Print version number and exit.
       -r
	   Display a security descriptor in raw mode. Values such as type and flags are displayed in hexadecimal format, a SID is not mapped to a
	   name.

NOTES

       Kernel support for getcifsacl/setcifsacl utilities was initially introduced in the 2.6.37 kernel.

SEE ALSO

       mount.cifs(8), winbindd(8), setcifsacl(1)

AUTHOR

       Shirish Pargaonkar wrote the getcifsacl program.

       The Linux CIFS Mailing list is the preferred place to ask questions regarding these programs.

cifs-utils							    08/19/2011							     GETCIFSACL(1)