Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#7186 - Warning on samba
Attached to Project:
Arch Linux
Opened by DaNiMoTh (DaNiMoTh) - Thursday, 17 May 2007, 13:11 GMT
Last edited by Roman Kyrylych (Romashka) - Thursday, 17 May 2007, 13:17 GMT
Opened by DaNiMoTh (DaNiMoTh) - Thursday, 17 May 2007, 13:11 GMT
Last edited by Roman Kyrylych (Romashka) - Thursday, 17 May 2007, 13:17 GMT
|
Details------------------------------------------------------------ Arch Linux Security Warning ALSW 2007-#31 ------------------------------------------------------------ Name: samba Date: 2007-05-17 Severity: High Warning #: 2007-#31 ------------------------------------------------------------ Product Background =================== Tools to access a server's filespace and printers via SMB Problem Background =================== Samba contains multiple vulnerabilities potentially resulting in the execution of arbitrary code with root privileges. Impact ================== A remote attacker could exploit these vulnerabilities to gain root privileges via various vectors. Problem Packages =================== Package: samba Repo: current Group: daemons Unsafe: < 3.0.25 Safe: >= 3.0.25 Package Fix =================== Upgrade to 3.0.25 =================== Unofficial ArchLinux Security Bug Tracker: http://jjdanimoth.netsons.org/alsw.html Reference(s) =================== [ 1 ] CVE-2007-2444 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2444 [ 2 ] CVE-2007-2446 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2446 [ 3 ] CVE-2007-2447 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2447 |
This task depends upon
Comment by DaNiMoTh (DaNiMoTh) -
Thursday, 17 May 2007, 13:12 GMT
Duplicate item. Excuse me, it can be safely close. Refer at #7187.