Alerts This Week
Warning Icon 1 905
Alerts This Week
Warning Icon 1 905

Slackware 14.1 Critical: SSA:2014-213-01 Samba Remote Code Execution

slackware
Calendar Grey August 1, 2014
Dist Slackware Esm H88
Samba updates for Slackware 14.1 resolve a severe vulnerability that allows remote code execution via unauthenticated nmbd services.
New samba packages are available for Slackware 14.1 and -current to fix a security issue

Summary

Here are the details from the Slackware 14.1 ChangeLog: patches/packages/samba-4.1.11-i486-1_slack14.1.txz: Upgraded. This update fixes a remote code execution attack on unauthenticated nmbd NetBIOS name services. A malicious browser can send packets that may overwrite the heap of the target nmbd NetBIOS name services daemon. It may be possible to use this to generate a remote code execution vulnerability as the superuser (root). For more information, see: https://www.cve.org/CVERecord?id=CVE-2014-3560 (* Security fix *)

Topics%20covered

Topics Covered

security advisory critical remote code execution samba security fix slackware

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 14.1:
Updated package for Slackware x86_64 14.1:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 14.1 package: f9eb404a40088180c93195b679402d8d samba-4.1.11-i486-1_slack14.1.txz
Slackware x86_64 14.1 package: 0ea529ae98cfcba0a54e93919eda9ca5 samba-4.1.11-x86_64-1_slack14.1.txz
Slackware -current package: bb47fb29b6dcb9a828b1e8dac3e59107 n/samba-4.1.11-i486-1.txz
Slackware x86_64 -current package: 587d9963535d8d42236dd61b91d1a0a8 n/samba-4.1.11-x86_64-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory critical remote code execution samba security fix slackware

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg samba-4.1.11-i486-1_slack14.1.txz Then, if Samba is running restart it: # /etc/rc.d/rc.samba restart

Your message here