Scientific Linux: Important Samba Update for CVE-2011-0719 DoS Threat

Date: Fri, 4 Mar 2011 14:59:04 -0600
Reply-To: Troy Dawson 
Sender: Security Errata for Scientific Linux
 
From: Troy Dawson 
Subject: Security ERRATA Important: samba on SL6.x i386/x86_64
Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it."
 

Synopsis:	Important: samba security update
Issue date:	2011-03-01
CVE Names:	CVE-2011-0719

A flaw was found in the way Samba handled file descriptors. If an
attacker were able to open a large number of file descriptors on the
Samba server, they could flip certain stack bits to "1" values,
resulting in the Samba server (smbd) crashing. (CVE-2011-0719)

After installing this update, the smb service will be restarted
automatically.

SL 6.x

 SRPMS:
samba-3.5.4-68.el6_0.2.src.rpm
 i386:
libsmbclient-3.5.4-68.el6_0.2.i686.rpm
libsmbclient-devel-3.5.4-68.el6_0.2.i686.rpm
samba-3.5.4-68.el6_0.2.i686.rpm
samba-client-3.5.4-68.el6_0.2.i686.rpm
samba-common-3.5.4-68.el6_0.2.i686.rpm
samba-doc-3.5.4-68.el6_0.2.i686.rpm
samba-domainjoin-gui-3.5.4-68.el6_0.2.i686.rpm
samba-swat-3.5.4-68.el6_0.2.i686.rpm
samba-winbind-3.5.4-68.el6_0.2.i686.rpm
samba-winbind-clients-3.5.4-68.el6_0.2.i686.rpm
samba-winbind-devel-3.5.4-68.el6_0.2.i686.rpm
 x86_64:
libsmbclient-3.5.4-68.el6_0.2.i686.rpm
libsmbclient-3.5.4-68.el6_0.2.x86_64.rpm
libsmbclient-devel-3.5.4-68.el6_0.2.i686.rpm
libsmbclient-devel-3.5.4-68.el6_0.2.x86_64.rpm
samba-3.5.4-68.el6_0.2.x86_64.rpm
samba-client-3.5.4-68.el6_0.2.x86_64.rpm
samba-common-3.5.4-68.el6_0.2.i686.rpm
samba-common-3.5.4-68.el6_0.2.x86_64.rpm
samba-doc-3.5.4-68.el6_0.2.x86_64.rpm
samba-domainjoin-gui-3.5.4-68.el6_0.2.x86_64.rpm
samba-swat-3.5.4-68.el6_0.2.x86_64.rpm
samba-winbind-3.5.4-68.el6_0.2.x86_64.rpm
samba-winbind-clients-3.5.4-68.el6_0.2.i686.rpm
samba-winbind-clients-3.5.4-68.el6_0.2.x86_64.rpm
samba-winbind-devel-3.5.4-68.el6_0.2.i686.rpm
samba-winbind-devel-3.5.4-68.el6_0.2.x86_64.rpm

-Connie Sieh
-Troy Dawson