Arch Linux

Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!
Tasklist

FS#7187 - Warning on samba

Attached to Project: Arch Linux
Opened by DaNiMoTh (DaNiMoTh) - Thursday, 17 May 2007, 13:11 GMT
Last edited by Tobias Powalowski (tpowa) - Saturday, 19 May 2007, 17:19 GMT
Task Type Bug Report
Category Security
Status Closed
Assigned To Tobias Powalowski (tpowa)
Architecture All
Severity Critical
Priority Normal
Reported Version 0.8 Voodoo
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No

Details

------------------------------------------------------------
Arch Linux Security Warning ALSW 2007-#31
------------------------------------------------------------

Name: samba
Date: 2007-05-17
Severity: High
Warning #: 2007-#31

------------------------------------------------------------

Product Background
===================
Tools to access a server's filespace and printers via SMB

Problem Background
===================
Samba contains multiple vulnerabilities potentially resulting in the
execution of arbitrary code with root privileges.

Impact
==================
A remote attacker could exploit these vulnerabilities to gain root
privileges via various vectors.

Problem Packages
===================
Package: samba
Repo: current
Group: daemons
Unsafe: < 3.0.25
Safe: >= 3.0.25

Package Fix
===================
Upgrade to 3.0.25

===================

Unofficial ArchLinux Security Bug Tracker:
http://jjdanimoth.netsons.org/alsw.html

Reference(s)
===================
[ 1 ] CVE-2007-2444
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2444
[ 2 ] CVE-2007-2446
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2446
[ 3 ] CVE-2007-2447
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2447
This task depends upon

This task blocks these from closing
 FS#7176 - Security bugs in samba server 3.0.24 
Closed by  Tobias Powalowski (tpowa)
Saturday, 19 May 2007, 17:19 GMT
Reason for closing:  Fixed
Comment by Roman Kyrylych (Romashka) - Thursday, 17 May 2007, 13:18 GMT
This is a duplicate of http://bugs.archlinux.org/task/7176

Loading...