drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in Samba
Name: |
Denial of Service in Samba |
|
ID: |
FEDORA-2013-14355 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 18 |
|
Datum: |
Do, 15. August 2013, 17:14 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4124 |
|
Applikationen: |
Samba |
|
Originalnachricht |
Name : samba Product : Fedora 18 Version : 4.0.8 Release : 1.fc18 URL : http://www.samba.org/ Summary : Server and Client software to interoperate with Windows machines Description : Samba is the standard Windows interoperability suite of programs for Linux and Unix.
------------------------------------------------------------------------------- - Update Information:
Update to 4.0.8 (CVE-2013-4124). ------------------------------------------------------------------------------- - ChangeLog:
* Mon Aug 5 2013 - Andreas Schneider <asn@redhat.com> 2:4.0.8-1 - Update to Samba 4.0.8 - resolves: #993043 - CVE-2013-4124 [fedora-all] - resolves: #984401 - CVE-2013-4124 DoS via integer overflow when reading an EA list * Mon Jul 15 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.7-2 - resolves: #972692 - Build with PIE and full RELRO. - resolves: #884169 - Add explicit dependencies suggested by rpmdiff. - resolves: #981033 - Local user's krb5cc deleted by winbind. - resolves: #984331 - Fix samba-common tmpfiles configuration file in wrong directory. * Wed Jul 3 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.7-1 - Update to Samba 4.0.7. * Fri Jun 7 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.6-3 - Add UPN enumeration to passdb internal API (bso #9779). * Wed May 22 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.6-2 - resolves: #966130 - Fix build with MIT Kerberos. - List vfs modules in spec file. * Tue May 21 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.6-1 - Update to Samba 4.0.6. * Wed Apr 10 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.5-1 - Update to Samba 4.0.5. - Add UPN enumeration to passdb internal API (bso #9779). - resolves: #928947 - samba-doc is obsolete now. - resolves: #948606 - LogRotate should be optional, and not a hard "Requires". * Fri Mar 22 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.4-3 - resolves: #919405 - Fix and improve large_readx handling for broken clients. - resolves: #924525 - Don't use waf caching. * Wed Mar 20 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.4-2 - resolves: #923765 - Improve packaging of README files. * Wed Mar 20 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.4-1 - Update to Samba 4.0.4. * Mon Mar 11 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.3-4 - resolves: #919333 - Create /run/samba too. * Mon Mar 4 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.3-3 - Fix the cache dir to be /var/lib/samba to support upgrades. * Thu Feb 14 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.3-2 - resolves: #907915 - libreplace.so => not found * Thu Feb 7 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.3-1 - Update to Samba 4.0.3. - resolves: #907544 - Add unowned directory /usr/lib64/samba. - resolves: #906517 - Fix pidl code generation with gcc 4.8. - resolves: #908353 - Fix passdb backend ldapsam as module. * Wed Jan 30 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.2-1 - Update to Samba 4.0.2. - Fixes CVE-2013-0213. - Fixes CVE-2013-0214. - resolves: #906002 - resolves: #905700 - resolves: #905704 - Fix conn->share_access which is reset between user switches. - resolves: #903806 - Add missing example and make sure we don't introduce perl dependencies. - resolves: #639470 * Wed Jan 16 2013 - Andreas Schneider <asn@redhat.com> - 2:4.0.1-1 - Update to Samba 4.0.1. - Fixes CVE-2013-0172. * Mon Dec 17 2012 - Andreas Schneider <asn@redhat.com> - 2:4.0.0-174 - Fix typo in winbind-krb-locator post uninstall script. * Tue Dec 11 2012 - Andreas Schneider <asn@redhat.com> - 2:4.0.0-173 - Update to Samba 4.0.0. * Thu Dec 6 2012 - Andreas Schneider <asn@redhat.com> - 2:4.0.0-171.rc6 - Fix typo in winbind-krb-locator post uninstall script. * Tue Dec 4 2012 - Andreas Schneider <asn@redhat.com> - 2:4.0.0-170.rc6 - Update to Samba 4.0.0rc6. - Add /etc/pam.d/samba for swat to work correctly. - resolves #882700 * Fri Nov 23 2012 Guenther Deschner <gdeschner@redhat.com> - 2:4.0.0-169.rc5 - Make sure ncacn_ip_tcp client code looks for NBT_NAME_SERVER name types. ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #984401 - CVE-2013-4124 samba: DoS via integer overflow when reading an EA list https://bugzilla.redhat.com/show_bug.cgi?id=984401 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update samba' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|