Login
Newsletter
Werbung

Sicherheit: Pufferüberlauf in samba
Aktuelle Meldungen Distributionen
Name: Pufferüberlauf in samba
ID: TLSA-2008-22
Distribution: TurboLinux
Plattformen: Turbolinux FUJI, Turbolinux 10 Server, Turbolinux 10 Server x64 Edition, Turbolinux Appliance Server 2.0, Turbolinux 11 Server x64 Edition, Turbolinux 11 Server, Turbolinux Appliance Server 3.0, Turbolinux Appliance Server 3.0 x64 Edition
Datum: Di, 17. Juni 2008, 03:50
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1105
Applikationen: Samba

Originalnachricht

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

--------------------------------------------------------------------------
Turbolinux Security Advisory TLSA-2008-22
http://www.turbolinux.co.jp/security/
security-team@turbolinux.co.jp
--------------------------------------------------------------------------

Original released date: 16 Jun 2008
Last revised: 16 Jun 2008

Package: samba

Summary: Heap Overflow

More information:
Samba is an Open Source/Free Software suite that provides seamless file
and print services to SMB/CIFS clients. Samba is freely available,
unlike other SMB/CIFS implementations, and allows for interoperability
between Linux/Unix servers and Windows-based clients.

Heap-based buffer overflow in the receive_smb_raw function in
util/sock.c in Samba 3.0.0 through 3.0.29 allows remote attackers
to execute arbitrary code via a crafted SMB response. (CVE-2008-1105)

Affected Products:
- Turbolinux Appliance Server 3.0 x64 Edition
- Turbolinux Appliance Server 3.0
- Turbolinux 11 Server x64 Edition
- Turbolinux 11 Server
- Turbolinux Appliance Server 2.0
- Turbolinux FUJI
- Turbolinux 10 Server x64 Edition
- Turbolinux 10 Server


<Turbolinux Appliance Server 3.0 x64 Edition>

Source Packages
Size: MD5

samba-3.0.26a-6.src.rpm
18193792 b286a97869a1e38c40a28c75f4f41a42

Binary Packages
Size: MD5

samba-3.0.26a-6.x86_64.rpm
39841919 159d89ed4dd1aaa06c03f8329a7395db
samba-python-3.0.26a-6.x86_64.rpm
7081538 73823f6aa686be9a1fdae53a7b69c7e8
smbfs-3.0.26a-6.x86_64.rpm
469838 3b0dfdc01a17e03e298ab3ebe970ab0c

<Turbolinux Appliance Server 3.0>

Source Packages
Size: MD5

samba-3.0.26a-6.src.rpm
18193792 b286a97869a1e38c40a28c75f4f41a42

Binary Packages
Size: MD5

samba-3.0.26a-6.i686.rpm
37927991 532e52ef29d95b2c08fa88f1bbaf0ff7
samba-python-3.0.26a-6.i686.rpm
6375055 c720a3c045276c08887eb23112028241
smbfs-3.0.26a-6.i686.rpm
419771 75362c22ef815efb72f701fe68bf1867

<Turbolinux 11 Server x64 Edition>

Source Packages
Size: MD5

samba-3.0.26a-6.src.rpm
18193792 78586514fb554ad6c0f17bf4eb0611a4

Binary Packages
Size: MD5

samba-3.0.26a-6.x86_64.rpm
39841919 159d89ed4dd1aaa06c03f8329a7395db
samba-devel-3.0.26a-6.x86_64.rpm
1530109 d4083b12e81fdb0ef266b4cab5760d51
samba-python-3.0.26a-6.x86_64.rpm
7081538 73823f6aa686be9a1fdae53a7b69c7e8
smbfs-3.0.26a-6.x86_64.rpm
469838 3b0dfdc01a17e03e298ab3ebe970ab0c

<Turbolinux 11 Server>

Source Packages
Size: MD5

samba-3.0.26a-6.src.rpm
18193792 6fa8767c8edb8c2c1d8305821ceaf41b

Binary Packages
Size: MD5

samba-3.0.26a-6.i686.rpm
37927991 532e52ef29d95b2c08fa88f1bbaf0ff7
samba-devel-3.0.26a-6.i686.rpm
1428253 0528dcffa4c1047c0fa8439c29a5485f
samba-python-3.0.26a-6.i686.rpm
6375055 c720a3c045276c08887eb23112028241
smbfs-3.0.26a-6.i686.rpm
419771 75362c22ef815efb72f701fe68bf1867

<Turbolinux Appliance Server 2.0>

Source Packages
Size: MD5

samba-3.0.6-24.src.rpm
15063170 d1df1d729b3aa44d78141aa60f51b289

Binary Packages
Size: MD5

samba-3.0.6-24.i586.rpm
24913980 193c7aeb6169dc8001ec28b3e1fc30a6
samba-devel-3.0.6-24.i586.rpm
754437 b8d17e2a05cd142dd92e9d7074205c25
smbfs-3.0.6-24.i586.rpm
247164 2ad232734460f048f4e6e0641d0e34fd

<Turbolinux FUJI>

Source Packages
Size: MD5

samba-3.0.20a-15.src.rpm
17212827 3b2ddfedc882c30818b5051803041522

Binary Packages
Size: MD5

samba-3.0.20a-15.i686.rpm
31621210 83eefa3cb55ab000913c1dffc3e18cf4
samba-devel-3.0.20a-15.i686.rpm
1170689 900a1fe1a8258180a3377b6bf9654b6c
samba-python-3.0.20a-15.i686.rpm
5131247 410cab4068b25332693ee0d4e60be4f4
smbfs-3.0.20a-15.i686.rpm
370802 ffe3e89b88773d94e27b3afa57ad7841

<Turbolinux 10 Server x64 Edition>

Source Packages
Size: MD5

samba-3.0.6-24.src.rpm
15063170 99593e49ebb8a3eb7ab2daa20c558e40

Binary Packages
Size: MD5

samba-3.0.6-24.x86_64.rpm
26705024 6afacad5de2fe7216c9a2efb418a51b9
samba-debug-3.0.6-24.x86_64.rpm
3005719 c2539eb7c57d9a76b73ffecc6a5f5a1d
samba-devel-3.0.6-24.x86_64.rpm
793643 591e0de6deb5cc278a568a45ace67947
samba-python-3.0.6-24.x86_64.rpm
4772498 3c6da23e899d46979cdf97d55ca5dc17
smbfs-3.0.6-24.x86_64.rpm
303235 bdcb15ed5dd8e45564ef7bf44ce7fedb

<Turbolinux 10 Server>

Source Packages
Size: MD5

samba-3.0.6-24.src.rpm
15063170 2142386f1894bcbce38cd17bbdcf9eee

Binary Packages
Size: MD5

samba-3.0.6-24.i586.rpm
24913980 193c7aeb6169dc8001ec28b3e1fc30a6
samba-debug-3.0.6-24.i586.rpm
2916241 813d3856ef849c7c9b097c510ab18298
samba-devel-3.0.6-24.i586.rpm
754437 b8d17e2a05cd142dd92e9d7074205c25
samba-python-3.0.6-24.i586.rpm
4048348 03ca09f43d8caf14bc76ceacccdf427e
smbfs-3.0.6-24.i586.rpm
247164 2ad232734460f048f4e6e0641d0e34fd


References:

CVE
[CVE-2008-1105]
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1105

--------------------------------------------------------------------------
Revision History
16 Jun 2008 Initial release
--------------------------------------------------------------------------

Copyright(C) 2008 Turbolinux, Inc. All rights reserved.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkhV5qUACgkQK0LzjOqIJMxbzwCdHXXpQabIV+oVboqtZJVtbuPD
IkEAn37OvvYI7ageRYTLdZ96B8XZlxz6
=HU/F
-----END PGP SIGNATURE-----
Pro-Linux
Traut euch!
Neue Nachrichten
Werbung