Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 568
Alerts This Week
Warning Icon 1 568

Gentoo: GLSA-202310-15 Normal: OpenSSH Key Negotiation Vulnerability

gentoo
Calendar Grey May 29, 2008
Dist Gentoo Esm H88
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Adviso
A heap-based buffer overflow vulnerability was found in Samba, allowing for the execution of arbitrary code.

Summary

Gentoo Linux Security Advisory GLSA 200805-23 https://security.gentoo.org/ Severity: Normal Title: Samba: Heap-based buffer overflow Date: May 29, 2008 Bugs: #222299 ID: 200805-23

Synopsis ======= A heap-based buffer overflow vulnerability was found in Samba, allowing for the execution of arbitrary code.
Background ========= Samba is a suite of SMB and CIFS client/server programs.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-fs/samba < 3.0.28a-r1 >= 3.0.28a-r1
========== Alin Rad Pop (Secunia Research) reported a vulnerability in Samba within the receive_smb_raw() function in the file lib/util_sock.c when parsing SMB packets, possibly leading to a heap...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround