Alerts This Week
Warning Icon 1 659
Alerts This Week
Warning Icon 1 659

Slackware 12.1: SSA:2008-333-01 Critical: Samba Uninitialized Memory

slackware
Calendar Grey November 29, 2008
Dist Slackware Esm H88
Updated Samba distributions for Slackware to mitigate vulnerabilities caused by the exposure of uninitialized memory readings.
New samba packages are available for Slackware 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, and -current to fix a possible security vulnerability involving the reading of uninitialized memo...

Summary

Here are the details from the Slackware 12.1 ChangeLog: patches/packages/samba-3.0.33-i486-1_slack12.1.tgz: Upgraded to samba-3.0.33. This package fixes an important barrier against rogue clients reading from uninitialized memory (though no proof-of-concept is known to exist). For more information, see: https://www.cve.org/CVERecord?id=CVE-2008-4314 (* Security fix *)

Topics%20covered

Topics Covered

security advisory security update critical samba slackware memory issue

Where Find New Packages

HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading directly from ftp.slackware.com.
Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating additional FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 10.0:
Updated package for Slackware 10.1:
Updated package for Slackware 10.2:
Updated package for Slackware 11.0:
Updated package for Slackware 12.0:
Updated package for Slackware 12.1:
Updated package for Slackware -current:

MD5 Signatures

Slackware 10.0 package: a90a8fd813146cb6bb58d520adaacecb samba-3.0.33-i486-1_slack10.0.tgz
Slackware 10.1 package: 122db4c6b6130153241d77a5ead9d30c samba-3.0.33-i486-1_slack10.1.tgz
Slackware 10.2 package: a389443adc7527b28ca73a3314a30fb4 samba-3.0.33-i486-1_slack10.2.tgz
Slackware 11.0 package: 2cb3d95561155b33977f7a9e6cfd73e6 samba-3.0.33-i486-1_slack11.0.tgz
Slackware 12.0 package: e686f28eee66cc709d829605c607abe4 samba-3.0.33-i486-1_slack12.0.tgz
Slackware 12.1 package: 2093828315cb481b6da985cb8520a383 samba-3.0.33-i486-1_slack12.1.tgz
Slackware -current package: 5eab5ecb3e61ea4fa4e51c16a1c227ad samba-3.2.5-i486-1.tgz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory security update critical samba slackware memory issue

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg samba-3.0.33-i486-1_slack12.1.tgz Then, restart the samba server: sh /etc/rc.d/rc.samba restart

Related News

Your message here