Alerts This Week
Warning Icon 1 659
Alerts This Week
Warning Icon 1 659

Slackware 12.0 SSA:2007-344-01 Critical: Samba Code Execution Threat

slackware
Calendar Grey December 10, 2007
Dist Slackware Esm H88
Recent updates to Samba packages for Slackware have addressed a critical vulnerability linked to a buffer overflow, enhancing security. Make sure to upgrade immediately!
New samba packages are available for Slackware 10.0, 10.1, 10.2, 11.0, 12.0, and -current to fix a security issue

Summary

Here are the details from the Slackware 12.0 ChangeLog: patches/packages/samba-3.0.28-i486-1_slack12.0.tgz: Upgraded to samba-3.0.28. Samba 3.0.28 is a security release in order to address a boundary failure in GETDC mailslot processing that can result in a buffer overrun leading to possible code execution. For more information, see: https://www.cve.org/CVERecord?id=CVE-2007-6015 https://www.flexera.com/products/security/software-vulnerability-research/secunia-research (* Security fix *)

Topics%20covered

Topics Covered

security advisory critical code execution buffer overrun slackware

Where Find New Packages

HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading directly from ftp.slackware.com.
Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating additional FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 10.0:
Updated package for Slackware 10.1:
Updated package for Slackware 10.2:
Updated package for Slackware 11.0:
Updated package for Slackware 12.0:
Updated package for Slackware -current:

MD5 Signatures

Slackware 10.0 package: 053df9ad7a4a1093312eb5a9694b608f samba-3.0.28-i486-1_slack10.0.tgz
Slackware 10.1 package: 8e71fbc64008d9a55a808207e34d0613 samba-3.0.28-i486-1_slack10.1.tgz
Slackware 10.2 package: c7a213d933e30ac464379498a1001c73 samba-3.0.28-i486-1_slack10.2.tgz
Slackware 11.0 package: e45fdf510d27d8fae340cdf5a3c958e5 samba-3.0.28-i486-1_slack11.0.tgz
Slackware 12.0 package: 16e70341053c75cc60868d13f5207abd samba-3.0.28-i486-1_slack12.0.tgz
Slackware -current package: 6ef212b0e1c058fd968c0252af63413f samba-3.0.28-i486-1.tgz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory critical code execution buffer overrun slackware

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg samba-3.0.28-i486-1_slack12.0.tgz Then, restart Samba: # /etc/rc.d/rc.samba restart

Related News

Your message here