Critical Samba Access Risk Fix for Slackware: 2017-082-02 Update

slackware

March 24, 2017

New samba packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue

Summary

Here are the details from the Slackware 14.2 ChangeLog: patches/packages/samba-4.4.12-i586-1_slack14.2.txz: Upgraded. This update fixes a security issue: All versions of Samba prior to 4.6.1, 4.5.7, 4.4.12 are vulnerable to a malicious client using a symlink race to allow access to areas of the server file system not exported under the share definition. For more information, see: https://www.cve.org/CVERecord?id=CVE-2017-2619 (* Security fix *)

Topics Covered

security advisory critical samba slackware access risk

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 14.0:
Updated package for Slackware x86_64 14.0:
Updated package for Slackware 14.1:
Updated package for Slackware x86_64 14.1:
Updated package for Slackware 14.2:
Updated package for Slackware x86_64 14.2:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 14.0 package: c17714e61d60e8e643bdd9bc51edafe1 samba-4.4.12-i486-1_slack14.0.txz
Slackware x86_64 14.0 package: 54bfdadaf8b7abc1242c5a71ea0a407f samba-4.4.12-x86_64-1_slack14.0.txz
Slackware 14.1 package: 500af32e09c75b7a234b4a9e05c62f5a samba-4.4.12-i486-1_slack14.1.txz
Slackware x86_64 14.1 package: 9f86969a772e06f991e9452dda584b81 samba-4.4.12-x86_64-1_slack14.1.txz
Slackware 14.2 package: e48f91e5a15555caec1d6c4b8b3b88f7 samba-4.4.12-i586-1_slack14.2.txz
Slackware x86_64 14.2 package: 4dd6e6936de5236eef7f7b0254390b05 samba-4.4.12-x86_64-1_slack14.2.txz
Slackware -current package: 4b0c75d2b3fecc64c6ad50c3d847e839 n/samba-4.6.1-i586-1.txz
Slackware x86_64 -current package: ff9eca50dedd7452a9f3a6f6fed43c84 n/samba-4.6.1-x86_64-1.txz

Severity

critical

Lowest

Low

Medium

High

Critical

Topics Covered

security advisory critical samba slackware access risk

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg samba-4.4.12-i586-1_slack14.2.txz Then, if Samba is running restart it: # /etc/rc.d/rc.samba restart

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Critical Samba Access Risk Fix for Slackware: 2017-082-02 Update

Summary

Topics Covered

Where Find New Packages

MD5 Signatures

Topics Covered

Get the latest News and Insights

Installation Instructions

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Critical Samba Access Risk Fix for Slackware: 2017-082-02 Update

Summary

Topics Covered

Where Find New Packages

MD5 Signatures

Topics Covered

Get the latest News and Insights

Installation Instructions

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!