Opened 10 years ago
Closed 10 years ago
#5197 closed enhancement (fixed)
samba-4.1.9
| Reported by: | Fernando de Oliveira | Owned by: | Fernando de Oliveira |
|---|---|---|---|
| Priority: | normal | Milestone: | 7.6 |
| Component: | BOOK | Version: | SVN |
| Severity: | normal | Keywords: | |
| Cc: |
Description
http://us1.samba.org/samba/ftp/stable/samba-4.1.9.tar.gz
https://www.samba.org/samba/history/samba-4.1.9.html
This is a security release in order to address
CVE-2014-0244 (Denial of service - CPU loop) and
CVE-2014-3493 (Denial of service - Server crash/memory corruption).
o CVE-2014-0244:
All current released versions of Samba are vulnerable to a denial of
service on the nmbd NetBIOS name services daemon. A malformed packet
can cause the nmbd server to loop the CPU and prevent any further
NetBIOS name service.
This flaw is not exploitable beyond causing the code to loop expending
CPU resources.
o CVE-2014-3493:
All current released versions of Samba are affected by a denial of service
crash involving overwriting memory on an authenticated connection to the
smbd file server.
Changes since 4.1.8:
--------------------
o Jeremy Allison <jra@samba.org>
* BUG 10633: CVE-2014-0244: Fix nmbd denial of service.
* BUG 10654: CVE-2014-3493: Fix segmentation fault in
smbd_marshall_dir_entry()'s SMB_FIND_FILE_UNIX handler.
Change History (2)
comment:1 by , 10 years ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
comment:2 by , 10 years ago
| Resolution: | → fixed |
|---|---|
| Status: | assigned → closed |
Note:
See TracTickets
for help on using tickets.
Fixed at r13309.